Prototype Pollution in madlib-object-utils

madlib-object-utils before 0.1.7 is vulnerable to Prototype Pollution via setValue...

Prototype Pollution

worksmith is vulnerable to prototype pollution. The vulnerability exists as the setValue function does not restrict proto headers to be set in objects...

CVE-2020-7725

All versions of package worksmith are vulnerable to Prototype Pollution via the setValue function...

CVE-2020-7725 Prototype Pollution

All versions of package worksmith are vulnerable to Prototype Pollution via the setValue function...

PT-2020-19746 · Npm · Worksmith

Name of the Vulnerable Software and Affected Versions: worksmith versions prior to 1.0.1 Description: The issue concerns Prototype Pollution via the setValue function. This affects all versions up to and including 1.0.0 of the worksmith package. Recommendations: For versions prior to 1.0.1, updat...

CVE-2020-7703

All versions of package nis-utils are vulnerable to Prototype Pollution via the setValue function...

CVE-2020-7703 Prototype Pollution

All versions of package nis-utils are vulnerable to Prototype Pollution via the setValue function...

Prototype Pollution

Overview nis-utils is a set of useful helpers Affected versions of this package are vulnerable to Prototype Pollution via the setValue function. POC const nisUtils = require'nis-utils'; nisUtils.object.setValue, 'proto.polluted', true; console.logpolluted; Details Prototype Pollution is a...

Prototype Pollution

Overview worksmith is an A purely functional workflow engine Affected versions of this package are vulnerable to Prototype Pollution via the setValue function. POC const worksmith = require'worksmith'; worksmith.setValue, 'proto.polluted', true; console.logpolluted; // true Details Prototype...

Prototype Pollution

madlib-object-utils is susceptible to prototype pollution. An attacker can send unsafe value via setValue using proto...

PT-2020-19726 · Nis-Utils · Nis-Utils

Name of the Vulnerable Software and Affected Versions: nis-utils versions up to and including 0.6.10 Description: The issue concerns Prototype Pollution via the setValue function. This affects all versions of the package up to and including 0.6.10. Recommendations: For versions up to and includin...

CVE-2020-7701

madlib-object-utils before 0.1.7 is vulnerable to Prototype Pollution via setValue...

CVE-2020-7701

CVE-2020-7701 and CVE-2022-24279 involve Prototype Pollution in madlib-object-utils prior to 0.1.8 via the setValue method. Affected: madlib-object-utils

CVE-2020-7701 Prototype Pollution

madlib-object-utils before 0.1.7 is vulnerable to Prototype Pollution via setValue...

Prototype Pollution

Overview madlib-object-utils is an A small set of utility functions for working with objects Affected versions of this package are vulnerable to Prototype Pollution via setValue. POC: const objectUtils = require"madlib-object-utils"; objectUtils.setValue'proto.polluted', , true;...

PT-2020-19724 · Madlib · Madlib-Object-Utils

Name of the Vulnerable Software and Affected Versions: madlib-object-utils versions prior to 0.1.7 Description: The issue allows for Prototype Pollution via the setValue function. Recommendations: For versions prior to 0.1.7, update to version 0.1.7 or later to resolve the issue...

Microsoft Internet Explorer ISettingsBroker Sandbox Bypass Vulnerability

This vulnerability allows attackers to execute arbitrary code on vulnerable installations of Microsoft Internet Explorer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the usage o...