| |
Vulnerability CVE-2024-39018
Published: 2024-07-01
| Description: |
harvey-woo cat5th/key-serializer v0.2.5 was discovered to contain a prototype pollution via the function "query". This vulnerability allows attackers to execute arbitrary code or cause a Denial of Service (DoS) via injecting arbitrary properties. |
References: |
https://gist.github.com/mestrtee/be75c60307b2292884cc03cebd361f3f
|
|
|
Copyright 2026, cxsecurity.com
|
|
|
