Skip to main content

Backbone Query Parameters

1 CVEs product

Monthly

CVE-2021-20085 npm HIGH POC This Week

Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') in backbone-query-parameters 0.4.0 allows a malicious user to inject properties into Object.prototype. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Prototype Pollution Code Injection Backbone Query Parameters
NVD GitHub
CVSS 3.1
8.8
EPSS
1.6%
EPSS 2% CVSS 8.8
HIGH POC This Week

Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') in backbone-query-parameters 0.4.0 allows a malicious user to inject properties into Object.prototype. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Prototype Pollution Code Injection Backbone Query Parameters
NVD GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy