CVE-2024-36574 | flatten-json 1.0.1 flatten-json/index.js module.exports.unflattenJSON prototype pollution

Inserito da Angelo Barbosa | Giu 17, 2024 | CVE

A vulnerability was found in flatten-json 1.0.1. It has been classified as problematic. Affected is the function module.exports.unflattenJSON of the file flatten-json/index.js. The manipulation leads to improperly controlled modification of object prototype attributes (‘prototype pollution’).

This vulnerability is traded as CVE-2024-36574. The attack needs to be initiated within the local network. There is no exploit available.

CVE-2024-36574 | flatten-json 1.0.1 flatten-json/index.js module.exports.unflattenJSON prototype pollution

Post correlati

CVE-2024-1301 | Badger Meter Monitool up to 4.6.3 j_username sql injection

CVE-2023-7057 | code-projects Faculty Management System 1.0 yearlevel.php Year Level/Section cross site scripting

CVE-2024-27703 | Leantime 3.0.6 to-do title cross site scripting

CVE-2024-3780 | Technicolor CGA2121 1.0.1 information disclosure