Lucene search
Veracode Vulnerability DatabaseVERACODE:26566HistorySep 02, 2020 - 6:22 a.m.
Prototype Pollution
2020-09-0206:22:30
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
8
0.005 Low
EPSS
Percentile
77.0%
deep-get-set is vulnerable to prototype pollution. The vulnerability exists as the main function does not restrict __proto__, constructor and prototype headers to be set in objects.
| CPE | Name | Operator | Version |
|---|---|---|---|
| deep-get-set | le | 1.0.0 | |
| deep-get-set | le | 1.1.0 | |
| deep-get-set | le | 1.0.0 | |
| deep-get-set | le | 1.1.0 |
Related
osv
osv
Prototype Pollution in deep-get-set
2021-05-06 18:12:59
Prototype Pollution in deep-get-set
2022-06-25 00:00:51
cvelist
cvelist
CVE-2020-7715 Prototype Pollution
2020-09-01 00:00:00
CVE-2022-21231 Prototype Pollution
2022-06-24 00:00:00
cve
cve
CVE-2020-7715
2020-09-01 10:15:10
CVE-2022-21231
2022-06-24 20:15:07
prion
prion
Design/Logic Flaw
2020-09-01 10:15:00
Design/Logic Flaw
2022-06-24 20:15:00
nvd
nvd
CVE-2020-7715
2020-09-01 10:15:10
CVE-2022-21231
2022-06-24 20:15:07
github
github
Prototype Pollution in deep-get-set
2021-05-06 18:12:59
Prototype Pollution in deep-get-set
2022-06-25 00:00:51
veracode
veracode
Prototype Pollution
2022-06-27 05:41:41