CVE-2022-4742 json-pointer index.js set prototype pollution

A vulnerability, which was classified as critical, has been found in json-pointer up to 0.6.1. Affected by this issue is the function set of the file index.js. The manipulation leads to improperly controlled modification of object prototype attributes 'prototype pollution'. The attack may be...

CVE-2022-4742

CVE-2022-4742 affects json-pointer up to 0.6.1, specifically the index.js set function, enabling prototype pollution. The issue is exploitable remotely and is fixed by upgrading to 0.6.2 (patch 859c9984b6c407fc2d5a0a7e47c7274daa681941). Affected references consistently describe this as a critical...

Json-Pointer 安全漏洞

Json-Pointer is an open source, Rfc 6901 described Json pointer some utility program by the individual developer Manuel Stofer in Switzerland. A security vulnerability exists in Json-Pointer. An attacker could exploit this vulnerability to cause prototype contamination...

PT-2022-28063 · Unknown · Json-Pointer

Name of the Vulnerable Software and Affected Versions: json-pointer versions up to 0.6.1 Description: A critical issue has been found in the function set of the file index.js, leading to improperly controlled modification of object prototype attributes, also known as 'prototype pollution'. This...

@2109-t5/server (>=1.0.0 <=1.0.9), @agentscript-ai/linear (>=0.1.0 <=0.9.0) +339 more potentially affected by CVE-2021-23509 via json-ptr (>=0.1.1 <=2.2.0)

json-ptr NPM version =0.1.1, =1.0.0, =0.1.0, =0.0.1, =0.0.1, =1.0.0, =1.0.0, =0.0.1, =0.15.0, =2.0.0-pr.1, =0.0.1-alpha.1, =5.4.3 - @cdxoo/pojo-utils =0.1.0 - @chix/chit =0.5.2 and more Source cves: CVE-2021-23509 Source advisory: OSV:GHSA-8GWJ-8HXC-285W...

Prototype Pollution in json-pointer

This affects versions of package json-pointer up to and including 0.6.1. A type confusion vulnerability can lead to a bypass of CVE-2020-7709 when the pointer components are arrays...

GHSA-V5VG-G7RQ-363W Prototype Pollution in json-pointer

This affects versions of package json-pointer up to and including 0.6.1. A type confusion vulnerability can lead to a bypass of CVE-2020-7709 when the pointer components are arrays...

json-pointer has an unspecified vulnerability

Json-Pointer is an open source, Rfc 6901 described by Manuel Stofer, a Swiss individual developer of some utilities for Json pointers. json-pointer has a security vulnerability that stems from improper design or implementation during the code development of a web-based system or product. No...

Prototype Pollution

json-pointer is vulnerable to prototype pollution. The vulnerability exists in the 'set' function of 'index.js' as a bypass of a previous fix for a prototype pollution vulnerability. An attacker is able to inject arbitrary properties into existing construct prototypes and modification of attribut...

CVE-2021-23820

This affects all versions of package json-pointer. A type confusion vulnerability can lead to a bypass of CVE-2020-7709 when the pointer components are arrays...

CVE-2021-23820

This affects all versions of package json-pointer. A type confusion vulnerability can lead to a bypass of CVE-2020-7709 when the pointer components are arrays...

Type confusion

This affects all versions of package json-pointer. A type confusion vulnerability can lead to a bypass of CVE-2020-7709 when the pointer components are arrays...

CVE-2021-23820 Prototype Pollution

This affects all versions of package json-pointer. A type confusion vulnerability can lead to a bypass of CVE-2020-7709 when the pointer components are arrays...

CVE-2021-23820

CVE-2021-23820 is a prototype pollution/type confusion vulnerability affecting all versions of the json-pointer package, with documented remediation path in the related advisory: vulnerable up to version 0.6.1. The root cause is a type confusion that can bypass CVE-2020-7709 when pointer componen...

json-pointer 安全漏洞

Json-Pointer is an open source, Rfc 6901 described by Manuel Stofer, a Swiss individual developer of some utilities for Json pointers. json-pointer has a security vulnerability that stems from improper design or implementation during the code development of a web-based system or product. No...

PT-2021-7248 · Npm · Json-Pointer

Name of the Vulnerable Software and Affected Versions: json-pointer versions up to and including 0.6.1 Description: A type confusion issue in the json-pointer package can lead to a bypass when the pointer components are arrays. This can potentially allow a remote attacker to execute arbitrary cod...

json-ptr 安全漏洞

Json-Ptr is a full implementation of Json pointer Rfc 6901 for Nodejs and modern browsers. a security vulnerability exists in Json-Ptr, which stems from a design or implementation impropriety in the code development process of a web system or product. No details of the vulnerability are currently...

Prototype Pollution

Overview json-ptr is a complete implementation of JSON Pointer RFC 6901 for nodejs and modern browsers. Affected versions of this package are vulnerable to Prototype Pollution. A type confusion vulnerability can lead to a bypass of CVE-2020-7766 when the user-provided keys used in the pointer...

@amitport/koangular-users (=0.0.0), @antimatter-studios/dredd (>=14.1.0 <=15.0.11) +206 more potentially affected by CVE-2020-7709 +2 more via json-pointer (>=0.0.4 <=0.6.1)

json-pointer NPM version =0.0.4, =14.1.0, =0.0.1, =0.0.2, =0.0.1, =1.2.6, =2.7.2, =1.0.0, =0.0.0-development, =1.0.0, =2.21.3, =9.0.0, =2.0.0, =0.0.1, =0.1.0 and more Source cves: CVE-2020-7709, CVE-2021-23820, CVE-2022-4742 Source advisory: SNYK:JS-JSONPOINTER-1577287...

Prototype Pollution

Overview json-pointer is a set of utilities for JSON pointers described by RFC 6901 Affected versions of this package are vulnerable to Prototype Pollution. A type confusion vulnerability can lead to a bypass of CVE-2020-7709 when the pointer components are arrays. PoC const pointer =...