15 matches found
EUVD-2021-1084
Malware in sbrugna...
EUVD-2021-1026
Malware in sbrugna...
Prototype Pollution
@amoy/common is vulnerable to prototype pollution. The vulnerability is due to setValue function, potentially allowing attackers to execute arbitrary code or cause a Denial of Service DoS by injecting arbitrary properties...
amoy common Security Vulnerabilities
amoy common is a library in amoyjs open source. A security vulnerability exists in amoy common v1.0.10, which stems from prototype contamination via the function setValue, allowing an attacker to execute arbitrary code or cause a denial of service DoS by injecting arbitrary properties...
PT-2024-28319 · Amoyjs · Amoyjs
Name of the Vulnerable Software and Affected Versions: amoyjs amoy common version 1.0.10 Description: The issue is related to a prototype pollution vulnerability via the setValue function. This allows attackers to execute arbitrary code or cause a Denial of Service DoS by injecting arbitrary...
Denial Of Service (DoS)
github.com/crossplane/crossplane-runtime is vulnerable to Denial Of Service DoS. The vulnerability exists due to the Pave and setValue functions in paved.go because it does not enforce the max index size of a field path, allowing an attacker to use excessive memory and cause an application crash...
GHSA-9829-JJ5P-J6HF Prototype Pollution in worksmith
All versions up to and including 1.0.0 of the package worksmith are vulnerable to Prototype Pollution via the setValue function...
Prototype Pollution in nis-utils
All versions of package nis-utils up to and including 0.6.10 are vulnerable to Prototype Pollution via the setValue function...
GHSA-GR58-J5WH-M333 Prototype Pollution in nis-utils
All versions of package nis-utils up to and including 0.6.10 are vulnerable to Prototype Pollution via the setValue function...
Prototype Pollution
worksmith is vulnerable to prototype pollution. The vulnerability exists as the setValue function does not restrict proto headers to be set in objects...
CVE-2020-7725
All versions of package worksmith are vulnerable to Prototype Pollution via the setValue function...
CVE-2020-7725 Prototype Pollution
All versions of package worksmith are vulnerable to Prototype Pollution via the setValue function...
CVE-2020-7703 Prototype Pollution
All versions of package nis-utils are vulnerable to Prototype Pollution via the setValue function...
CVE-2020-7701
madlib-object-utils before 0.1.7 is vulnerable to Prototype Pollution via setValue...
PT-2020-19724 · Madlib · Madlib-Object-Utils
Name of the Vulnerable Software and Affected Versions: madlib-object-utils versions prior to 0.1.7 Description: The issue allows for Prototype Pollution via the setValue function. Recommendations: For versions prior to 0.1.7, update to version 0.1.7 or later to resolve the issue...