Product

Form-Data-Objectizer

1 brief RSS

form-data-objectizer Prototype Pollution Vulnerability (CVE-2026-46510)

The form-data-objectizer npm package version 1.0.0 is vulnerable to prototype pollution (CVE-2026-46510) via crafted form keys, allowing an attacker to modify Object.prototype and potentially cause denial-of-service, bypass security checks, or inject unintended values.

form-data-objectizer prototype-pollution javascript node.js

2r 1t 2d ago