CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

11 matches found

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2022-6418

Malicious code in bioql PyPI...

9.8CVSS9.4AI score0.0041EPSS

Exploits1References2

Github Security Blog•added 2022/07/26 12:1 a.m.•31 views

set-deep-prop Prototype Pollution

All versions of package set-deep-prop are vulnerable to Prototype Pollution via the main functionality...

9.8CVSS4.7AI score0.0041EPSS

Exploits1References3Affected Software1

OSV•added 2022/07/26 12:1 a.m.•13 views

GHSA-V42Q-78W8-8FCC set-deep-prop Prototype Pollution

All versions of package set-deep-prop are vulnerable to Prototype Pollution via the main functionality...

9.8CVSS9.5AI score0.0041EPSS

Exploits1References2

NVD•added 2022/07/25 2:15 p.m.•5 views

CVE-2021-23373

All versions of package set-deep-prop are vulnerable to Prototype Pollution via the main functionality...

9.8CVSS0.0041EPSS

Exploits1References1

Prion•added 2022/07/25 2:15 p.m.•14 views

Design/Logic Flaw

All versions of package set-deep-prop are vulnerable to Prototype Pollution via the main functionality...

7.5CVSS9.4AI score0.0041EPSS

Exploits1References1

Cvelist•added 2022/07/25 2:10 p.m.•10 views

CVE-2021-23373 Prototype Pollution

All versions of package set-deep-prop are vulnerable to Prototype Pollution via the main functionality...

7.5CVSS9.7AI score0.0041EPSS

Exploits1References1

CVE•added 2022/07/25 2:10 p.m.•55 views

CVE-2021-23373

The CVE-2021-23373 entry concerns set-deep-prop, where the main functionality is vulnerable to Prototype Pollution. Multiple connected sources confirm the vulnerability in set-deep-prop (e.g., GHSA, Veracode, Snyk) and describe how an attacker can pollute Object.prototype via the library’s setDee...

9.8CVSS8.7AI score0.0041EPSS

Exploits1References1Affected Software1

ATTACKERKB•added 2022/07/25 2:5 p.m.•0 views

CVE-2021-23373

All versions of package set-deep-prop are vulnerable to Prototype Pollution via the main functionality...

9.8CVSS5.3AI score0.0041EPSS

Exploits1References2

CNNVD•added 2022/07/25 12:0 a.m.•1 views

set-deep-prop 安全漏洞

set-deep-prop is a tool for setting the values of deeply nested objects and arrays. A security vulnerability exists in set-deep-prop, which stems from the vulnerability of this package to prototype contamination...

9.8CVSS8.2AI score0.0041EPSS

Exploits1References2

Positive Technologies•added 2022/07/25 12:0 a.m.•2 views

PT-2022-9395 · Unknown · Set-Deep-Prop

Name of the Vulnerable Software and Affected Versions: set-deep-prop affected versions not specified Description: The issue affects the main functionality of the package, allowing for Prototype Pollution. Recommendations: At the moment, there is no information about a newer version that contains ...

9.8CVSS9.4AI score0.0041EPSS

Exploits1References3

Snyk•added 2021/03/08 12:27 p.m.•4 views

Prototype Pollution

Overview set-deep-prop is a Set the value of a deeply nested object or array Affected versions of this package are vulnerable to Prototype Pollution via the main functionality. PoC const setDeepProp = require'set-deep-prop'; setDeepProp,'proto', 'x', 'polluted'; console.log.a; // polluted Details...

9.8CVSS9AI score0.0041EPSS

Exploits1References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by