Vulnerable NodeJS libraries: herearrow-up-right
Access prototype of an object via __proto__ or constructor.prototype property
__proto__
constructor.prototype
Client-side prototype pollution vulnerabilities: herearrow-up-right
Safe Identification: herearrow-up-right
Status Code: __proto__.status
__proto__.status
Parameter Limit: __proto__.parameterLimit
__proto__.parameterLimit
Content-Type: __proto__.content-type
__proto__.content-type
Check user-supplied properties against a whitelist
Freeze prototype by calling Object.freeze()
Object.freeze()
Create object without prototype with Object.create(null)
Object.create(null)
Last updated 8 months ago