Lucene search
K

4 matches found

OSV
OSV
added 2025/11/13 9:15 p.m.4 views

CVE-2025-47222

A class name enumeration was found in Keyfactor SignServer versions prior to 7.3.2. Setting any chosen class name to any of the properties requiring a class path and the provided class is not expected to return different errors if the class exists in deployment or not. This returns information...

6.5CVSS5.8AI score0.00265EPSS
Exploits0References3
Snyk
Snyk
added 2022/12/29 1:58 p.m.4 views

Prototype Pollution

Overview flatnest is a Flatten/Nest Javascript objects. Affected versions of this package are vulnerable to Prototype Pollution via the nest function in the flatnest/nest.js file. Details Prototype Pollution is a vulnerability affecting JavaScript. Prototype Pollution refers to the ability to...

9.8CVSS9AI score0.00892EPSS
Exploits1References2
Snyk
Snyk
added 2020/08/14 9:40 a.m.6 views

Prototype Pollution

Overview dot-notes is a Two way conversions between objects and dot/bracket notation Affected versions of this package are vulnerable to Prototype Pollution via the create function. POC: const dots = require'dot-notes'; dots.create, 'proto.polluted', true; console.logpolluted; Details Prototype...

9.8CVSS9AI score0.01916EPSS
Exploits1References2
Snyk
Snyk
added 2020/07/30 2:3 p.m.3 views

Prototype Pollution

Overview flat is a Take a nested Javascript object and flatten it, or unflatten an object with delimited keys Affected versions of this package are vulnerable to Prototype Pollution. PoC var unflatten = require'flat'.unflatten; unflatten 'proto.polluted': true ; console.logpolluted; // true Detai...

9.8CVSS7.7AI score0.01107EPSS
Exploits0References2
Rows per page
Query Builder