CVE-2024-23339

Published: 22/01/2024 Updated: 30/01/2024

CVSS v3 Base Score: 6.5 | Impact Score: 2.5 | Exploitability Score: 3.9

VMScore: 0

hoolock is a suite of lightweight utilities designed to maintain a small footprint when bundled. Starting in version 2.0.0 and prior to version 2.2.1, utility functions related to object paths (`get`, `set`, and `update`) did not block attempts to access or alter object prototypes. Starting in version 2.2.1, the `get`, `set` and `update` functions throw a `TypeError` when a user attempts to access or alter inherited properties.

Vulnerable Product	Search on Vulmon	Subscribe to Product
elijahharry hoolock

Team NodeBoB Prototype Pollution Auto Detection Tool in Node.js npm package

PP-Auto-Detector Team NodeBoB Prototype Pollution Auto Detection Tool in Nodejs npm package Contents How does it work? CVE Credits How does it work? node ppjs This tool detects prototype pollution in Nodejs npm package It goes get npm package lists by keyword(you can change keywords and starting index) install package check pro

CWE-1321 https://github.com/elijahharry/hoolock/security/advisories/GHSA-4c2g-hx49-7h25 https://github.com/elijahharry/hoolock/commit/97ae80e856774335d92743c635ffeae2f652b982 https://nvd.nist.gov https://github.com/d3ng03/PP-Auto-Detector

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Product List Vendor List Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2024-23339

Vulnerability Summary

Github Repositories

References

Vulmon Search

About

Products

Connect