Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
veracodeVeracode Vulnerability DatabaseVERACODE:39475
HistoryMar 01, 2023 - 9:54 a.m.

Prototype Pollution

2023-03-0109:54:07
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
7
prototype pollution
rangy
vulnerability
recursive merge
object properties

EPSS

0.001

Percentile

33.6%

JSON

rangy is vulnerable to Prototype Pollution. The vulnerability exists in the extend function of rangy-core.js, due to the usage of a recursive merge which allows an attacker to modify Object.prototype properties, resulting in Prototype Pollution.

Related

cve 1
osv 1
github 1
prion 1
cvelist 1
nvd 1
ibm 1
cve
cve
CVE-2023-26102
2023-02-24 05:15:15
osv
osv
rangy vulnerable to Prototype Pollution
2023-02-24 06:30:16
github
github
rangy vulnerable to Prototype Pollution
2023-02-24 06:30:16
prion
prion
Buffer overflow
2023-02-24 05:15:00
cvelist
cvelist
CVE-2023-26102
2023-02-24 05:00:01
nvd
nvd
CVE-2023-26102
2023-02-24 05:15:15
ibm
ibm
Security Bulletin: IBM Planning Analytics Workspace is affected by vulnerabilities in multiple Open Source Software (OSS) components
2024-08-29 23:40:24

EPSS

0.001

Percentile

33.6%

JSON
Related for VERACODE:39475
cve1osv1github1prion1cvelist1nvd1ibm1