Entreprise d'experts en Sécurité Informatique : Audits et conseils en cybersécurité
Entreprise française de cybersécurité depuis 2004
☎ 03 60 47 09 81 - info@securiteinfo.com


CVE-2020-8203

Description

Prototype pollution attack when using _.zipObjectDeep in lodash before 4.17.20.

POC

Reference

- https://hackerone.com/reports/712065

- https://www.oracle.com//security-alerts/cpujul2021.html

- https://www.oracle.com/security-alerts/cpuApr2021.html

- https://www.oracle.com/security-alerts/cpuapr2022.html

- https://www.oracle.com/security-alerts/cpujan2022.html

- https://www.oracle.com/security-alerts/cpuoct2021.html

Github

- https://github.com/0x2e-Tech/awesome-ai-prompts

- https://github.com/20142995/nuclei-templates

- https://github.com/ELHADANITAHA/OWASP-JSP-TP

- https://github.com/HotDB-Community/HotDB-Engine

- https://github.com/IgorNMS/Invisible-Ink

- https://github.com/MCP-Mirror/qianniuspace_mcp-security-audit

- https://github.com/andrewbearsley/lacework-sca-scan-example

- https://github.com/appsecomega/pkg-verify

- https://github.com/arsalan-learn/pnpm_test

- https://github.com/chkp-dhouari/CloudGuard-ShiftLeft-CICD

- https://github.com/cleamax/seccheck

- https://github.com/dcambronero/shiftleft

- https://github.com/duckstroms/Web-CTF-Cheatsheet

- https://github.com/ifunky/demo-site

- https://github.com/logpress-io/sbom-quickcheck

- https://github.com/logpress-io/sbom-quickcheck-examples

- https://github.com/markusweldon/claude-snyk-security-expert

- https://github.com/markusweldon/snyk-sca-githubactions

- https://github.com/mrhenrike/Hacking-Cheatsheet

- https://github.com/najla-zwawi/SpectrolOpsTest

- https://github.com/nilsujma-dev/CloudGuard-ShiftLeft-CICD

- https://github.com/ossf-cve-benchmark/CVE-2020-8203

- https://github.com/p3sky/Cloudguard-Shifleft-CICD

- https://github.com/patil-kaustubh/private

- https://github.com/puryersc/shiftleftv2

- https://github.com/puryersc/shiftleftv3

- https://github.com/puryersc/shiftleftv4

- https://github.com/pwnosec/CTF-Cheatsheet

- https://github.com/qianniuspace/mcp-security-audit

- https://github.com/rotem94/VulnerabilityScanner

- https://github.com/rtfeldman/node-elm-compiler

- https://github.com/seal-community/patches

- https://github.com/therickybobbeh/dep-scanner

- https://github.com/tonywangs/code-canary

- https://github.com/w181496/Web-CTF-Cheatsheet

- https://github.com/wils0n/sca-lab