CVE-2024-36572
CVE-2024-36572 concerns prototype pollution in allpro form-manager 0.7.4. The issue arises through the functions setDefaults , mergeBranch , and Object.setObjectValue , enabling attackers to manipulate Object.prototype and potentially achieve arbitrary code execution or other impacts as described...