EUVD-2021-1145

Malware in sbrugna...

GHSA-P6JH-P7Q8-PCRG Prototype Pollution in nodee-utils

All versions of package nodee-utils below version 1.2.3 are vulnerable to Prototype Pollution via the deepSet function...

Prototype Pollution in nodee-utils

All versions of package nodee-utils below version 1.2.3 are vulnerable to Prototype Pollution via the deepSet function...

Prototype Pollution

nodee-utils is vulnerable to prototype pollution. The vulnerability exists as it does not restrict the proto header to be set through the deepSet function...

CVE-2020-7722

All versions of package nodee-utils are vulnerable to Prototype Pollution via the deepSet function...

Design/Logic Flaw

All versions of package nodee-utils are vulnerable to Prototype Pollution via the deepSet function...

CVE-2020-7722 Prototype Pollution

All versions of package nodee-utils are vulnerable to Prototype Pollution via the deepSet function...

PT-2020-19743 · Node.Js · Nodee-Utils

Name of the Vulnerable Software and Affected Versions: nodee-utils versions prior to 1.2.3 Description: The issue concerns Prototype Pollution via the deepSet function. This allows for potential manipulation of object properties, which can lead to various security issues. Recommendations: For...

Prototype Pollution

Overview nodee-utils is a set of useful helpers Affected versions of this package are vulnerable to Prototype Pollution via the deepSet function. POC: const object = require'nodee-utils'; object.deepSet, 'proto.polluted', true; console.logpolluted; Details Prototype Pollution is a vulnerability...