Prototype pollution
Class of web security vulnerabilities
From Wikipedia, the free encyclopedia
Prototype pollution is a class of vulnerabilities in JavaScript runtimes that allows attackers to overwrite arbitrary properties in an object's prototype.[1][2][3][4][5][6] In a prototype pollution attack, attackers inject properties into existing JavaScript construct prototypes, trying to compromise the application.
