13 matches found
EUVD-2021-1356
Malware in sbrugna...
CVE-2021-25947
Prototype pollution vulnerability in 'nestie' versions 0.0.0 through 1.0.0 allows an attacker to cause a denial of service and may lead to remote code execution...
GHSA-M7RG-8WVQ-846V Prototype pollution in nestie
Prototype pollution vulnerability in 'nestie' versions 0.0.0 through 1.0.0 allows an attacker to cause a denial of service and may lead to remote code execution...
Prototype pollution in nestie
Prototype pollution vulnerability in 'nestie' versions 0.0.0 through 1.0.0 allows an attacker to cause a denial of service and may lead to remote code execution...
Prototype Pollution
Overview nestie is an A tiny 224B and fast utility to expand a flattened object Affected versions of this package are vulnerable to Prototype Pollution. A bypass of CVE-2021-25947 is possible which could lead to pollution of the object prototype. PoC var nestie = require"nestie" console.log"Befor...
Prototype Pollution
nestie is vulnerable prototype pollution. An attacker is able to inject properties into existing construct prototypes and modify attributes such as proto, constructor and prototype, leading to a denial of service or potentially allow remote code execution...
CVE-2021-25947
Prototype pollution vulnerability in 'nestie' versions 0.0.0 through 1.0.0 allows an attacker to cause a denial of service and may lead to remote code execution...
CVE-2021-25947
Prototype pollution vulnerability in 'nestie' versions 0.0.0 through 1.0.0 allows an attacker to cause a denial of service and may lead to remote code execution...
Remote code execution
Prototype pollution vulnerability in 'nestie' versions 0.0.0 through 1.0.0 allows an attacker to cause a denial of service and may lead to remote code execution...
CVE-2021-25947
Prototype pollution vulnerability in 'nestie' versions 0.0.0 through 1.0.0 allows an attacker to cause a denial of service and may lead to remote code execution...
CVE-2021-25947
CVE-2021-25947 involves the npm package nestie (versions 0.0.0–1.0.0) and is a prototype pollution vulnerability causing DoS and potential remote code execution. The issue stems from unsafe merging/propagation of proto -related properties, allowing an attacker to pollute Object.prototype. Public ...
Npm nestie 安全漏洞
Npm nestie is an Npm open source application for extending the flat object tiny 224B and quick utilities. A security vulnerability exists in nestie that stems from a prototype contamination vulnerability in nestie versions 0.0.0 through 1.0.0. An attacker could exploit the vulnerability to cause ...
PT-2021-16873 · Nestie · Nestie
Name of the Vulnerable Software and Affected Versions: nestie versions 0.0.0 through 1.0.0 Description: The issue allows an attacker to cause a denial of service and may lead to remote code execution. Recommendations: For versions 0.0.0 through 1.0.0, at the moment, there is no information about ...