Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
valib through 2.0.0 allows Internal Property Tampering. A maliciously crafted JavaScript object can bypass several inspection functions provided by valib. Valib uses a built-in function (hasOwnProperty) from the unsafe user-input to examine an object. It is possible for a crafted payload to overwrite this function to manipulate the inspection results to bypass security checks.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
valib 安全漏洞
Vulnerability Description
valib是一款用于验证功能的Javascript库。 valib 2.0.0及之前版本中存在安全漏洞。攻击者可借助特制的payload利用该漏洞操纵检查结果,绕过安全检查。
CVSS Information
N/A
Vulnerability Type
N/A