Количество 2
Количество 2
CVE-2025-57330
The web3-core-subscriptions is a package designed to manages web3 subscriptions. A Prototype Pollution vulnerability in the attachToObject function of web3-core-subscriptions version 1.10.4 and before allows attackers to inject properties on Object.prototype via supplying a crafted payload, causing denial of service (DoS) as the minimum consequence.
GHSA-hhf6-3xpg-pggx
web3-core-subscriptions has a Prototype Pollution vulnerability
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2025-57330 The web3-core-subscriptions is a package designed to manages web3 subscriptions. A Prototype Pollution vulnerability in the attachToObject function of web3-core-subscriptions version 1.10.4 and before allows attackers to inject properties on Object.prototype via supplying a crafted payload, causing denial of service (DoS) as the minimum consequence. | CVSS3: 7.5 | 0% Низкий | 5 месяцев назад |
| GHSA-hhf6-3xpg-pggx web3-core-subscriptions has a Prototype Pollution vulnerability | 0% Низкий | 5 месяцев назад |
Уязвимостей на страницу