3 matches found
CVE-2024-38990
Tada5hi sp-common v0.5.4 was discovered to contain a prototype pollution via the function mergeDeep. This vulnerability allows attackers to execute arbitrary code or cause a Denial of Service DoS via injecting arbitrary properties...
CVE-2024-38990
CVE-2024-38990 affects Tada5hi sp-common v0.5.4. The issue is a prototype pollution in the mergeDeep function that allows an attacker to inject arbitrary properties, potentially leading to arbitrary code execution or a DoS. CVSS v3.1 base score 6.3 (Network attack, low privileges, no user interac...
CVE-2024-38990
Tada5hi sp-common v0.5.4 was discovered to contain a prototype pollution via the function mergeDeep. This vulnerability allows attackers to execute arbitrary code or cause a Denial of Service DoS via injecting arbitrary properties...