CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

11 matches found

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2020-0386

Malware in sbrugna...

5.3CVSS5.3AI score0.00347EPSS

Exploits1References4

Github Security Blog•added 2024/05/20 6:31 p.m.•14 views

Blackprint @blackprint/engine Prototype Pollution issue

A Prototype Pollution issue in Blackprint @blackprint/engine 0.8.12 through 0.9.1 allows an attacker to execute arbitrary code via the utils.setDeepProperty function of engine.min.js...

9.8CVSS8AI score0.00178EPSS

Exploits0References4Affected Software1

Github Security Blog•added 2020/04/07 3:52 p.m.•73 views

confinit vulnerable to prototype pollution

confinit through 0.3.0 is vulnerable to Prototype Pollution.The 'setDeepProperty' function could be tricked into adding or modifying properties of 'Object.prototype' using a 'proto' payload...

5.3CVSS2.7AI score0.00347EPSS

Exploits1References4Affected Software1

OSV•added 2020/04/07 3:52 p.m.•10 views

GHSA-JGPQ-G82G-6C39 confinit vulnerable to prototype pollution

confinit through 0.3.0 is vulnerable to Prototype Pollution.The 'setDeepProperty' function could be tricked into adding or modifying properties of 'Object.prototype' using a 'proto' payload...

5.3CVSS5.1AI score0.00347EPSS

Exploits1References3

Veracode•added 2020/04/07 9:14 a.m.•11 views

Prototype Pollution

confinit is vulnerable to prototype pollution. The vulnerability exists because the function setDeepProperty allows the manipulation of properties of Object.prototype as it accepts the proto payload...

5.3CVSS2.8AI score0.00347EPSS

Exploits1References1Affected Software1

Veracode•added 2020/04/07 9:4 a.m.•12 views

Prototype Pollution

confinit is vulnerable Prototype Pollution. The vulnerability exists because the function setDeepProperty allows the manipulation of properties of Object.prototype as it accepts proto payload...

8.1AI score

Exploits0

NVD•added 2020/04/06 1:15 p.m.•8 views

CVE-2020-7638

confinit through 0.3.0 is vulnerable to Prototype Pollution.The 'setDeepProperty' function could be tricked into adding or modifying properties of 'Object.prototype' using a 'proto' payload...

5.3CVSS5.2AI score0.00347EPSS

Exploits1References2

OSV•added 2020/04/06 1:15 p.m.•13 views

CVE-2020-7638

confinit through 0.3.0 is vulnerable to Prototype Pollution.The 'setDeepProperty' function could be tricked into adding or modifying properties of 'Object.prototype' using a 'proto' payload...

5.3CVSS5.3AI score

Exploits0References2

Prion•added 2020/04/06 1:15 p.m.•12 views

Design/Logic Flaw

confinit through 0.3.0 is vulnerable to Prototype Pollution.The 'setDeepProperty' function could be tricked into adding or modifying properties of 'Object.prototype' using a 'proto' payload...

5CVSS5.2AI score0.00347EPSS

Exploits1References2Affected Software1

Positive Technologies•added 2020/04/06 12:0 a.m.•2 views

PT-2020-19674 · Confinit · Confinit

Name of the Vulnerable Software and Affected Versions: confinit versions 0.3.0 and earlier Description: The issue concerns Prototype Pollution, where the setDeepProperty function can be tricked into adding or modifying properties of Object.prototype using a proto payload. This allows for potentia...

5.3CVSS4.9AI score0.00347EPSS

Exploits1References6

Snyk•added 2020/04/05 12:0 a.m.•2 views

Prototype Pollution

Overview confinit is an Application configuration helpers for Node.Js. Affected versions of this package are vulnerable to Prototype Pollution. The setDeepProperty function could be tricked into adding or modifying properties of Object.prototype using a proto payload. PoC var root =...

5.3CVSS7.9AI score0.00347EPSS

Exploits1References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by