Security Advisory
CVE-2024-36572
CVE vulnerability detail — eXtreme Datacenter Security Operations
Description
Prototype pollution in allpro form-manager 0.7.4 allows attackers to run arbitrary code and cause other impacts via the functions setDefaults, mergeBranch, and Object.setObjectValue.