3 matches found
The vulnerability of the y18n application library at Avora Center lies in the uncontrolled modification of object prototypes’ attributes, allowing attackers to execute “prototype pollution” attacks.
The vulnerability of the y18n application library in Aurora Software Center is related to uncontrolled changes to object prototypes’ attributes. Exploiting this vulnerability could allow a malicious actor to execute a “prototype contamination” attack remotely...
UBUNTU-CVE-2020-7774
The package y18n before 3.2.2, 4.0.1 and 5.0.5, is vulnerable to Prototype Pollution...
Prototype Pollution
Overview y18n is a the bare-bones internationalization library used by yargs Affected versions of this package are vulnerable to Prototype Pollution due to improper sanitization. PoC by po6ix: js const y18n = require'y18n'; y18n.setLocale'proto'; y18n.updateLocalepolluted: true;...