Lucene search
Veracode Vulnerability DatabaseVERACODE:29187HistoryFeb 01, 2021 - 3:58 a.m.
Prototype Pollution
2021-02-0103:58:33
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
11
iniparserjs
prototype pollution
vulnerability
ini_parser.js
attributes modification
EPSS
0.001
Percentile
45.7%
iniparserjs is vulnerable to prototype pollution. An attacker can inject arbitrary properties into existing construct prototypes via concatenation of array in ini_parser.js to modify attributes such as __proto__, constructor and prototype.
Related
cvelist
cvelist
CVE-2021-23328 Prototype Pollution
2021-01-29 16:15:18
prion
prion
Design/Logic Flaw
2021-01-29 17:15:00
cve
cve
CVE-2021-23328
2021-01-29 17:15:12
osv
osv
Prototype Pollution in iniparserjs
2021-04-13 15:20:09
github
github
Prototype Pollution in iniparserjs
2021-04-13 15:20:09
nvd
nvd
CVE-2021-23328
2021-01-29 17:15:12