CVE-2024-36574

A Prototype Pollution issue in flatten-json 1.0.1 allows an attacker to execute arbitrary code via module.exports.unflattenJSON flatten-json/index.js:42...

Prototype Pollution

@allanlancioni/flatten-json is vulnerable to Prototype Pollution. The vulnerability is due to the unflattenJSON method, allowing attackers to exploit properties such as proto or constructor.prototype to inject malicious payloads...

PT-2024-27074 · Unknown · Flatten-Json

Name of the Vulnerable Software and Affected Versions: flatten-json version 1.0.1 Description: A Prototype Pollution issue allows an attacker to execute arbitrary code via module.exports.unflattenJSON in flatten-json/index.js. Recommendations: For flatten-json version 1.0.1, consider disabling th...

flatten-json security vulnerability

flatten-json is a Python library from the Python Foundation. A security vulnerability exists in flatten-json version 1.0.1, which stems from a vulnerability that allows attackers to execute arbitrary code via module.exports.unflattenJSON...