Lucene search
Veracode Vulnerability DatabaseVERACODE:28603HistoryDec 16, 2020 - 1:25 a.m.
Prototype Pollution
2020-12-1601:25:19
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
10
vulnerability
prototype pollution
js-data
deepmixin
injection
arbitrary properties
attributes modification
EPSS
0.007
Percentile
80.2%
js-data is vulnerable to pollution prototype. An attacker is able to exploit the vulnerability to inject arbitrary properties into existing construct prototypes and modify attributes such as __proto__, constructor and prototype via the deepMixIn function.
Related
github
github
Prototype Pollution in js-data
2022-02-09 22:45:52
Prototype Pollution in js-data
2022-01-06 21:58:56
huntr
huntr
Prototype Pollution in js-data/js-data
2021-01-11 00:00:00
cve
cve
CVE-2020-28442
2020-12-15 08:15:12
CVE-2021-23574
2021-12-24 20:15:08
cvelist
cvelist
CVE-2020-28442 Prototype Pollution
2020-12-15 07:25:15
CVE-2021-23574 Prototype Pollution
2021-12-24 20:00:18
nvd
nvd
CVE-2020-28442
2020-12-15 08:15:12
CVE-2021-23574
2021-12-24 20:15:08
osv
osv
Prototype Pollution in js-data
2022-02-09 22:45:52
Prototype Pollution in js-data
2022-01-06 21:58:56
prion
prion
Code injection
2020-12-15 08:15:00
Design/Logic Flaw
2021-12-24 20:15:00
veracode
veracode
Prototype Pollution
2021-12-27 07:30:29
checkpoint_advisories
checkpoint_advisories