CVE-2024-24294

May 20, 2024, 7:34 p.m.

Tags

cve@mitre.org
2024-05-20
CVE-2024-24294

Product(s) Impacted

Blackprint

  • 0.9.0

Blackprint @blackprint/engine

  • 0.9.0

Description

A Prototype Pollution issue in Blackprint @blackprint/engine v.0.9.0 allows an attacker to execute arbitrary code via the _utils.setDeepProperty function of engine.min.js.

Weaknesses

Date

Published: May 20, 2024, 5:15 p.m.

Last Modified: May 20, 2024, 7:34 p.m.

Status : Awaiting Analysis

CVE has been recently published to the CVE List and has been received by the NVD.

More info

Source

cve@mitre.org

References

https://gist.github.com/mestrtee/d1eb6e1f7c6dd60d8838c3e56cab634d
cve@mitre.org