17 matches found
Prototype Pollution
json-schema-editor-visual is vulnerable to Prototype Pollution. The vulnerability is due to insufficient validation of user-supplied input in the setData and deleteData functions, which allows an attacker to supply a crafted payload to inject or delete properties on Object.prototype, potentially...
EUVD-2025-31053
Malicious code in bioql PyPI...
CVE-2025-57320
json-schema-editor-visual is a package that provides jsonschema editor. A Prototype Pollution vulnerability in the setData and deleteData function of json-schema-editor-visual versions thru 1.1.1 allows attackers to inject or delete properties on Object.prototype via supplying a crafted payload,...
Prototype Pollution
Overview json-schema-editor-visual is a jsonschema editor Affected versions of this package are vulnerable to Prototype Pollution via the setData or deleteData functions. An attacker can manipulate the prototype of objects by supplying a crafted payload, potentially leading to unauthorized...
json-schema-editor-visual vulnerable to prototype pollution
json-schema-editor-visual is a package that provides jsonschema editor. A Prototype Pollution vulnerability in the setData and deleteData function of json-schema-editor-visual versions thru 1.1.1 allows attackers to inject or delete properties on Object.prototype via supplying a crafted payload,...
GHSA-3C3P-XH4F-PFH7 json-schema-editor-visual vulnerable to prototype pollution
json-schema-editor-visual is a package that provides jsonschema editor. A Prototype Pollution vulnerability in the setData and deleteData function of json-schema-editor-visual versions thru 1.1.1 allows attackers to inject or delete properties on Object.prototype via supplying a crafted payload,...
graphos-cli (>=1.0.0 <=1.0.1), panshi-client (>=0.0.7 <=0.0.8) potentially affected by CVE-2025-57320 via json-schema-editor-visual (>=1.1.1 <=2.0.0)
json-schema-editor-visual NPM version =1.1.1, =1.0.0, =0.0.7, =0.0.8 Source cves: CVE-2025-57320 Source advisory: OSV:GHSA-3C3P-XH4F-PFH7...
graphos-cli (>=1.0.0 <=1.0.1), panshi-client (>=0.0.7 <=0.0.8) potentially affected by CVE-2025-57320 via json-schema-editor-visual (>=1.1.1 <=2.0.0)
json-schema-editor-visual NPM version =1.1.1, =1.0.0, =0.0.7, =0.0.8 Source cves: CVE-2025-57320 Source advisory: SNYK:JS-JSONSCHEMAEDITORVISUAL-13110010...
CVE-2025-57320
json-schema-editor-visual is a package that provides jsonschema editor. A Prototype Pollution vulnerability in the setData and deleteData function of json-schema-editor-visual versions thru 1.1.1 allows attackers to inject or delete properties on Object.prototype via supplying a crafted payload,...
CVE-2025-57320
json-schema-editor-visual is a package that provides jsonschema editor. A Prototype Pollution vulnerability in the setData and deleteData function of json-schema-editor-visual versions thru 1.1.1 allows attackers to inject or delete properties on Object.prototype via supplying a crafted payload,...
CVE-2025-57320
CVE-2025-57320 affects the package json-schema-editor-visual. Connected sources confirm a Prototype Pollution vulnerability in the setData and deleteData functions for versions up to and including 1.1.1, allowing a crafted payload to inject or delete properties on Object.prototype. Practical impa...
PT-2025-39350
Name of the Vulnerable Software and Affected Versions json-schema-editor-visual versions through 1.1.1 Description A Prototype Pollution issue exists in the setData and deleteData functions. Attackers can inject or delete properties on Object.prototype by providing a crafted payload, potentially...
json-schema-editor-vue 安全漏洞
json-schema-editor-vue is a json editor by AlbertZhang personal developer. A security vulnerability exists in json-schema-editor-vue 1.1.1 and earlier versions, which stems from prototype contamination in the setData and deleteData functions, which could lead to a denial of service attack...
CVE-2025-57320
json-schema-editor-visual is a package that provides jsonschema editor. A Prototype Pollution vulnerability in the setData and deleteData function of json-schema-editor-visual versions thru 1.1.1 allows attackers to inject or delete properties on Object.prototype via supplying a crafted payload,...
CVE-2025-57320
json-schema-editor-visual is a package that provides jsonschema editor. A Prototype Pollution vulnerability in the setData and deleteData function of json-schema-editor-visual versions thru 1.1.1 allows attackers to inject or delete properties on Object.prototype via supplying a crafted payload,...
MAL-2024-11047 Malicious code in json-schema-editor-visual-yapi (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c2c434b89e0272562d45ccf56680fe4b6edf72651ddb2603233fa84ad67bf2c4 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in json-schema-editor-visual-yapi (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c2c434b89e0272562d45ccf56680fe4b6edf72651ddb2603233fa84ad67bf2c4 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...