Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
assign-deep node module before 0.4.7 suffers from a Modification of Assumed-Immutable Data (MAID) vulnerability, which allows a malicious user to modify the prototype of "Object" via __proto__, causing the addition or modification of an existing property that will exist on all objects.
CVSS Information
N/A
Vulnerability Type
对假设不可变数据的修改(MAID)
Vulnerability Title
assign-deep node模块安全漏洞
Vulnerability Description
assign-deep node module是一个能够将源对象的可枚举属性分配给目标对象的模块。 assign-deep node模块0.4.7之前版本中存在安全漏洞。攻击者可借助__proto__修改‘Object’原型利用该漏洞造成拒绝服务(崩溃或返回500错误)并可能执行代码。
CVSS Information
N/A
Vulnerability Type
N/A