CVE-2024-36577 | apphp js-object-resolver up to 3.1.0 Module.setNestedProperty prototype pollution

Inserito da Angelo Barbosa | Giu 17, 2024 | CVE

A vulnerability was found in apphp js-object-resolver up to 3.1.0. It has been rated as problematic. Affected by this issue is the function Module.setNestedProperty. The manipulation leads to improperly controlled modification of object prototype attributes (‘prototype pollution’).

This vulnerability is handled as CVE-2024-36577. Access to the local network is required for this attack to succeed. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-36577 | apphp js-object-resolver up to 3.1.0 Module.setNestedProperty prototype pollution

Post correlati

CVE-2023-6582 | ElementsKit Lite Plugin up to 3.0.3 on WordPress information disclosure

CVE-2024-45184 | Samsung Mobile Processor/Wearable Processor/Modem up to W930 out-of-bounds write

CVE-2024-8047 | Visual Sound Plugin up to 1.06 on WordPress Setting cross-site request forgery

CVE-2023-47731 | IBM QRadar Suite Software/Cloud Pak for Security Web UI cross site scripting (XFDB-272203)