Fallos del tipo CWE-1321
304 resultadosCVE-2024-38987MEDIUMaofl cli-lib v3.14.0 was discovered to contain a prototype pollution via the component defaultsDeep. This vulnerability allows attackers to EPSS 0.5%CVE-2024-45815MEDIUMPrototype pollution in @backstage/plugin-catalog-backendEPSS 0.5%CVE-2026-32886HIGHParse Server's Cloud function dispatch crashes server via prototype chain traversalEPSS 0.5%CVE-2026-32621CRITICALApollo Federation has prototype pollution via incomplete key sanitizationEPSS 0.5%CVE-2024-57065HIGHA prototype pollution in the lib.createPath function of utile v0.3.0 allows attackers to cause a Denial of Service (DoS) via supplying a craEPSS 0.5%CVE-2026-44966HIGHVelocity.js: Prototype Pollution in #set path assignmentEPSS 0.5%CVE-2024-57072HIGHA prototype pollution in the lib.requireFromString function of module-from-string v3.3.1 allows attackers to cause a Denial of Service (DoS)EPSS 0.5%CVE-2025-62381HIGHsveltekit-superforms Prototype Pollution in `parseFormData` function of `formData.js`EPSS 0.5%CVE-2025-57347CRITICALA vulnerability exists in the 'dagre-d3-es' Node.js package version 7.0.9, specifically within the 'bk' module's addConflict function, whichEPSS 0.5%CVE-2025-8101HIGHLinkify 4.3.1 - Prototype Pollution & HTML Attribute Injection (XSS)EPSS 0.5%CVE-2024-39003HIGHamoyjs amoy common v1.0.10 was discovered to contain a prototype pollution via the function setValue. This vulnerability allows attackers toEPSS 0.5%CVE-2026-30939HIGHParse Server has Denial of Service (DoS) and Cloud Function Dispatch Bypass via Prototype Chain ResolutionEPSS 0.5%CVE-2026-44494HIGHAxios: Full Man-in-the-Middle via Prototype Pollution Gadget in `config.proxy`EPSS 0.5%CVE-2024-34273MEDIUMnjwt up to v0.4.0 was discovered to contain a prototype pollution in the Parser.prototype.parse method.EPSS 0.5%CVE-2025-3193HIGHVersions of the package algoliasearch-helper from 2.0.0-rc1 and before 3.11.2 are vulnerable to Prototype Pollution in the _merge() functionEPSS 0.5%CVE-2023-30857LOW@aedart/support possibly vulnerable to prototype pollution in metadata record, when using meta decoratorEPSS 0.5%CVE-2024-57083HIGHA prototype pollution in the component Module.mergeObjects (redoc/bundles/redoc.lib.js:2) of redoc <= 2.2.0 allows attackers to cause a DeniEPSS 0.5%CVE-2026-42232CRITICALn8n: XML Node Prototype Pollution to RCEEPSS 0.5%CVE-2025-54803HIGHjs-toml is vulnerable to Prototype PollutionEPSS 0.5%CVE-2025-63704CRITICALNPM package query-parser-string 1.0.0 is vulnerable to Prototype Pollution. The package does not properly sanitize user supplied query paramEPSS 0.5%