CVE-2024-24294 | blackprint engine 0.9.0 engine.min.js _utils.setDeepProperty prototype pollution

Inserito da Angelo Barbosa | Mag 20, 2024 | CVE

A vulnerability classified as problematic was found in blackprint engine 0.9.0. This vulnerability affects the function _utils.setDeepProperty of the file engine.min.js. The manipulation leads to improperly controlled modification of object prototype attributes (‘prototype pollution’).

This vulnerability was named CVE-2024-24294. The attack can be initiated remotely. There is no exploit available.

CVE-2024-24294 | blackprint engine 0.9.0 engine.min.js _utils.setDeepProperty prototype pollution

Post correlati

CVE-2024-37831 | itsourcecode Payroll Management System 1.0 payroll_items.php ID sql injection

CVE-2023-48725 | Netgear RAX30 1.0.7.78/1.0.11.96 HTTP Request getblockschedule stack-based overflow (PSV-2023-0160)

CVE-2023-6583 | Import and Export Users and Customers Plugin up to 1.24.2 on WordPress Recurring Import path traversal

CVE-2024-5224 | Easy Social Like Box Plugin up to 4.0 on WordPress Shortcode cross site scripting