Security Advisory

CVE-2022-25296

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-03-17 11:20:16

Last updated 2024-09-17 01:16:33

Assigner snyk

State PUBLISHED

Description

The package bodymen from 0.0.0 are vulnerable to Prototype Pollution via the handler function which could be tricked into adding or modifying properties of Object.prototype using a __proto__ payload. **Note:** This vulnerability derives from an incomplete fix to [CVE-2019-10792](https://security.snyk.io/vuln/SNYK-JS-BODYMEN-548897)

← Browse all CVEs View on cve.org ↗