Register
Login
Toggle navigation
SaaS Solutions
Vulnerability Intelligence
Vulnerability Management
Pricing
Vulnerabilities
Reports
Blog
Contact Us
Main
Vulnerability Database
CWE List
CWE-1321 - Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')
Description
The product receives input from an upstream component that specifies attributes that are to be initialized or updated in an object, but it does not properly control modifications of attributes of the object prototype.
Latest vulnerabilities for CWE-1321
Multiple vulnerabilities in IBM Cloud Pak for Business Automation
2026-01-08
High
Yes
Public exploit
Prototype pollution in expr-eval
2026-01-07
Medium
Yes
Multiple vulnerabilities in IBM Event Streams
2026-01-06
High
Yes
Public exploit
Multiple vulnerabilities in IBM Big SQL on Cloud Pak for Data
2025-12-26
High
Yes
Public exploit
Prototype pollution in Happy DOM
2025-12-16
High
Yes
Multiple vulnerabilities in IBM WatsonX BI Assistant for CP4D
2025-12-16
Medium
Yes
Public exploit
Prototype pollution in Express.js
2025-12-01
Medium
Yes
Prototype pollution in fast-redact
2025-11-07
Medium
Yes
Multiple vulnerabilities in IBM Business Automation Insights
2025-11-07
High
Yes
Public exploit
Prototype pollution in Parse SDK js
2025-10-17
Medium
Yes
References
Description of CWE-1321 on Mitre website