Количество 2
Количество 2
CVE-2025-57329
web3-core-method is a package designed to creates the methods on the web3 modules. A Prototype Pollution vulnerability in the attachToObject function of web3-core-method version 1.10.4 and before allows attackers to inject properties on Object.prototype via supplying a crafted payload, causing denial of service (DoS) as the minimum consequence.
GHSA-2j4c-9qqq-896r
web3-core-method is vulnerable to prototype pollution
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2025-57329 web3-core-method is a package designed to creates the methods on the web3 modules. A Prototype Pollution vulnerability in the attachToObject function of web3-core-method version 1.10.4 and before allows attackers to inject properties on Object.prototype via supplying a crafted payload, causing denial of service (DoS) as the minimum consequence. | CVSS3: 7.5 | 0% Низкий | 5 месяцев назад |
| GHSA-2j4c-9qqq-896r web3-core-method is vulnerable to prototype pollution | 0% Низкий | 5 месяцев назад |
Уязвимостей на страницу