Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Prototype Pollution
Vulnerability Description
This affects the package json8 before 1.0.3. The function adds in the target object the property specified in the path, however it does not properly check the key being set, leading to a prototype pollution.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
Vulnerability Type
N/A
Vulnerability Title
Sonnyp JSON8 输入验证错误漏洞
Vulnerability Description
Sonnyp JSON8是Sonnyp个人开发者的一个用于与操作 json 数据的Js代码库。 json8 1.0.3之前版本存在安全漏洞,该漏洞源于adds函数在目标对象中路径中指定的属性,但是它没有正确地检查所设置的键,导致原型污染。
CVSS Information
N/A
Vulnerability Type
N/A