CVE-2024-45435 | Chartist up to 1.3.0 extend prototype pollution

Inserito da Angelo Barbosa | Ago 29, 2024 | CVE

A vulnerability was found in Chartist up to 1.3.0. It has been declared as problematic. Affected by this vulnerability is the function extend. The manipulation leads to improperly controlled modification of object prototype attributes (‘prototype pollution’).

This vulnerability is known as CVE-2024-45435. The attack needs to be done within the local network. There is no exploit available.

CVE-2024-45435 | Chartist up to 1.3.0 extend prototype pollution

Post correlati

CVE-2024-46936 | Rocket.Chat up to 6.12.0 Message UpdateOTRAck

CVE-2024-42768 | Kashipara Hotel Management System 1.0 /admin/delete_room.php cross-site request forgery

CVE-2024-28715 | DoraCMS up to 2.18 markdown.jsx markdown0 cross site scripting

CVE-2024-0945 | 60IndexPage up to 1.8.5 Parameter /include/file.php url server-side request forgery