• #dev 2020-03-05
  • Prev
    Next
  • #indieweb
  • #dev
  • #wordpress
  • #meta
  • #stream
  • #microformats
  • #known
  • #events
#dev ≡
  • ←
  • →
2020-03-05 UTC
# 21:41
Zegnat JSON << JavaScript’s (and thus node’s) JSON parser has enabled Prototype Poisoning (https://medium.com/intrinsic/javascript-prototype-poisoning-vulnerabilities-in-the-wild-7bc15347c96) in multiple tools, see https://hueniverse.com/a-tale-of-prototype-poisoning-2610fa170061?gi=5984ffcbc7a9 for one such story and open-source solution