Weaknesses of type CWE-1321

304 results
CVE-2023-28103HIGHPrototype pollution in matrix-react-sdkEPSS 0.7%CVE-2024-33519HIGHAuthenticated Server-Side prototype pollution Leading to Information DisclosureEPSS 0.7%CVE-2024-36573CRITICALalmela obx before v.0.0.4 has a Prototype Pollution issue which allows arbitrary code execution via the obx/build/index.js:656), reduce (@alEPSS 0.7%CVE-2024-39014CRITICALahilfoley cahil/utils v2.3.2 was discovered to contain a prototype pollution via the function set. This vulnerability allows attackers to exEPSS 0.7%CVE-2024-38985CRITICALjanryWang products depath v1.0.6 and cool-path v1.1.2 were discovered to contain a prototype pollution via the set() method at setIn (lib/inEPSS 0.7%CVE-2024-24293HIGHA Prototype Pollution issue in MiguelCastillo @bit/loader v.10.0.3 allows an attacker to execute arbitrary code via the M function e argumenEPSS 0.7%CVE-2024-24292CRITICALA Prototype Pollution issue in Aliconnect /sdk v.0.0.6 allows an attacker to execute arbitrary code via the aim function in the aim.js compoEPSS 0.7%CVE-2024-36572CRITICALPrototype pollution in allpro form-manager 0.7.4 allows attackers to run arbitrary code and cause other impacts via the functions setDefaultEPSS 0.7%CVE-2022-41713MEDIUMdeep-object-diff 1.1.0 - Prototype PollutionEPSS 0.6%CVE-2026-44791CRITICALn8n: XML Node Prototype Pollution Patch BypassEPSS 0.6%CVE-2024-21489HIGHVersions of the package uplot before 1.6.31 are vulnerable to Prototype Pollution via the uplot.assign function due to missing check if the EPSS 0.6%CVE-2024-21548HIGHVersions of the package bun after 0.0.12 and before 1.1.30 are vulnerable to Prototype Pollution due to improper input sanitization. An attaEPSS 0.6%CVE-2026-44789CRITICALn8n: HTTP Request Node Pagination Prototype Pollution to RCEEPSS 0.6%CVE-2024-45435CRITICALChartist 1.x through 1.3.0 allows Prototype Pollution via the extend function.EPSS 0.6%CVE-2025-25977CRITICALAn issue in canvg v.4.0.2 allows an attacker to execute arbitrary code via the Constructor of the class StyleElement.EPSS 0.6%CVE-2026-25150CRITICALPrototype Pollution via FormData Processing in Qwik CityEPSS 0.6%CVE-2022-42743MEDIUMdeep-parse-json 1.0.2 - Prototype PollutionEPSS 0.6%CVE-2022-41714MEDIUMfastest-json-copy 1.0.1 - Prototype PollutionEPSS 0.6%CVE-2026-33228HIGHflatted: Prototype Pollution via parse()EPSS 0.6%CVE-2026-29063HIGHImmutable.js: Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') in immutableEPSS 0.6%