CVE-2026-44966 | shepherdwind velocity.js up to 2.1.5 prototype pollution (GHSA-j658-c2gf-x6pq)

Inserito da Angelo Barbosa | Mag 27, 2026 | CVE

A vulnerability identified as critical has been detected in shepherdwind velocity.js up to 2.1.5. Affected by this vulnerability is an unknown functionality. Performing a manipulation results in improperly controlled modification of object prototype attributes.

This vulnerability is identified as CVE-2026-44966. The attack can be initiated remotely. There is not any exploit available.

CVE-2026-44966 | shepherdwind velocity.js up to 2.1.5 prototype pollution (GHSA-j658-c2gf-x6pq)

Post correlati

CVE-2025-47329 | Qualcomm Snapdragon Auto FastConnect 7800 up to WSA8845 release of reference

CVE-2024-11308 | TRCore DVC up to 6.3 hard-coded key

CVE-2025-36632 | Tenable Agent up to 10.8.4 on Windows default permission (EUVD-2025-18396)

CVE-2024-5136 | PHPGurukul Directory Management System 1.0 search-directory.php. cross site scripting