CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

13 matches found

RedhatCVE•added 2026/01/09 10:42 a.m.•3 views

CVE-2022-26260

Simple-Plist v1.3.0 was discovered to contain a prototype pollution vulnerability via .parse...

9.8CVSS7.3AI score0.00281EPSS

Exploits1References1

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2022-1425

Malicious code in bioql PyPI...

9.8CVSS9.3AI score0.00281EPSS

Exploits1References5

Veracode•added 2022/03/23 4:59 a.m.•23 views

Prototype Pollution

simple-plist is vulnerable to prototype pollution. The vulnerability exists because the validations are not handled properly which allows an attacker to inject properties into existing construct prototypes and modify attributes via .parse function...

9.8CVSS4.2AI score0.00281EPSS

Exploits1References2Affected Software1

OSV•added 2022/03/23 12:0 a.m.•21 views

GHSA-GFF7-G5R8-MG8M Prototype Pollution in simple-plist

simple-plist v1.3.0 was discovered to contain a prototype pollution vulnerability via .parse...

9.8CVSS9.5AI score0.00281EPSS

Exploits1References5

vulnersOsv•added 2022/03/23 12:0 a.m.•2 views

4paradigm_robot_service (>=0.0.1 <=0.0.16), @99xt/first-born (>=1.0.0 <=1.0.1) +2313 more potentially affected by CVE-2022-26260 via simple-plist (>=0.0.2 <=1.1.1)

simple-plist NPM version =0.0.2, =0.0.1, =1.0.0, =0.0.1, =0.0.12, =0.20.0, =0.0.1, =0.0.1, =0.0.1, =0.0.1, =1.0.7 - @appzung/react-native-code-push =5.7.1 and more Source cves: CVE-2022-26260 Source advisory: OSV:GHSA-GFF7-G5R8-MG8M...

9.8CVSS7.2AI score0.00281EPSS

Exploits1

Github Security Blog•added 2022/03/23 12:0 a.m.•81 views

Prototype Pollution in simple-plist

simple-plist v1.3.0 was discovered to contain a prototype pollution vulnerability via .parse...

9.8CVSS3.2AI score0.00281EPSS

Exploits1References5Affected Software1

NVD•added 2022/03/22 7:15 p.m.•6 views

CVE-2022-26260

Simple-Plist v1.3.0 was discovered to contain a prototype pollution vulnerability via .parse...

9.8CVSS0.00281EPSS

Exploits1References1

ATTACKERKB•added 2022/03/22 7:15 p.m.•0 views

CVE-2022-26260

Simple-Plist v1.3.0 was discovered to contain a prototype pollution vulnerability via .parse...

9.8CVSS5.9AI score0.00281EPSS

Exploits1References2

OSV•added 2022/03/22 7:15 p.m.•7 views

CVE-2022-26260

Simple-Plist v1.3.0 was discovered to contain a prototype pollution vulnerability via .parse...

9.8CVSS7.5AI score

Exploits0References1

Prion•added 2022/03/22 7:15 p.m.•6 views

Code injection

Simple-Plist v1.3.0 was discovered to contain a prototype pollution vulnerability via .parse...

7.5CVSS9.5AI score0.00281EPSS

Exploits1References1Affected Software1

Cvelist•added 2022/03/22 6:15 p.m.•10 views

CVE-2022-26260

Simple-Plist v1.3.0 was discovered to contain a prototype pollution vulnerability via .parse...

9.8AI score0.00281EPSS

Exploits1References1

CVE•added 2022/03/22 6:15 p.m.•86 views

CVE-2022-26260

CVE-2022-26260 affects Simple-Plist v1.3.0. The Red Hat, Veracode, and OSV entries, plus CVE records, confirm a prototype-pollution vulnerability in the library exposed via the .parse() function. Root cause: improper handling during parsing that allows injection of properties into construct proto...

9.8CVSS9.5AI score0.00281EPSS

Exploits1References1Affected Software1

CNNVD•added 2022/03/22 12:0 a.m.•1 views

Simple-Plist 安全漏洞

Simple-Plist is a simple API for interacting with binary and plain text Plist data from Joe Wollard, a personal developer in the US. A security vulnerability exists in wollardj Simple-Plist v1.3.0, which stems from a prototype contamination vulnerability in .parse...

9.8CVSS8.2AI score0.00281EPSS

Exploits1References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by