Lucene search
GoogleOSV:GHSA-P23C-P8W2-WW5VHistoryJun 18, 2022 - 12:00 a.m.
Prototype Pollution in querymen
2022-06-1800:00:19
Google
osv.dev
10
querymen
prototype pollution
vulnerability
incomplete fix
cve-2020-7600
software
EPSS
0.002
Percentile
58.7%
All versions of package querymen are vulnerable to Prototype Pollution if the parameters of exported function handler(type, name, fn) can be controlled by users without any sanitization. Note: This vulnerability derives from an incomplete fix of CVE-2020-7600.
Related
prion
prion
Design/Logic Flaw
2022-06-17 20:15:00
Code injection
2020-03-12 23:15:00
cvelist
cvelist
CVE-2022-25871 Prototype Pollution
2022-06-17 20:05:34
CVE-2020-7600
2020-03-12 22:25:43
cve
cve
CVE-2022-25871
2022-06-17 20:15:10
CVE-2020-7600
2020-03-12 23:15:12
github
github
Prototype Pollution in querymen
2022-06-18 00:00:19
nvd
nvd
CVE-2022-25871
2022-06-17 20:15:10
CVE-2020-7600
2020-03-12 23:15:12
veracode
veracode
Prototype Pollution
2022-06-20 05:05:10
Prototype Pollution
2020-03-13 07:34:33
osv
osv
Improperly Controlled Modification of Dynamically-Determined Object Attributes in querymen
2021-05-07 16:16:43
CVE-2020-7600
2020-03-12 23:15:12