CVE-2024-45435 | Chartist up to 1.3.0 extend prototype pollution

Inserito da Angelo Barbosa | Ago 29, 2024 | CVE

A vulnerability was found in Chartist up to 1.3.0. It has been declared as problematic. Affected by this vulnerability is the function extend. The manipulation leads to improperly controlled modification of object prototype attributes (‘prototype pollution’).

This vulnerability is known as CVE-2024-45435. The attack needs to be done within the local network. There is no exploit available.

CVE-2024-45435 | Chartist up to 1.3.0 extend prototype pollution

Post correlati

CVE-2024-2792 | Elementor Addon Elements Plugin up to 1.13.2 on WordPress Text Separator/Image Compare cross site scripting

CVE-2024-7409 | QEMU NBD Server denial of service

CVE-2024-25508 | RuvarOA 6.01/12.01 bulletin_template_show.aspx id sql injection

CVE-2024-7064 | ElementsKit Pro Plugin up to 3.6.5 on WordPress cross site scripting