Top Tweets for #prototypepollution
New Axios proxy vulnerabilities expose apps. A critical prototype pollution gadget allows full traffic interception. Secure patches are now available.
#Cybersecurity #Axios #Vulnerability #PrototypePollution #NodeJS #Infosec #MITM
https://t.co/K99DzrL2uA
New write-up published: Prototype Pollution in Practice
Using three PortSwigger labs, I walk through a repeatable methodology.
Less about lab solutions, more about the process.
https://t.co/mWTX70rrMG
#CyberSecurity #BugBounty #XSS #PrototypePollution
n8n fixes three critical 9.4 CVSS flaws (CVE-2026-44790/91/89). Authenticated users can break sandboxes for local file read and server-level RCE. Patch now!
#n8n #WorkflowAutomation #CyberSecurity #InfoSec #RCE #Vulnerability #DevOps #PrototypePollution
https://t.co/DXOSqSzTbP
Prototype pollution remains highly exploitable in modern applications.
Manipulating proto objects can lead to privilege escalation.
Backend understanding is critical for exploitation.
#BugBounty #PrototypePollution #CyberSecurity #Hacking
Critical CVSS 10 and 9.4 vulnerabilities hit n8n. Prototype pollution in XML nodes can lead to full RCE. Patch to v2.18.1 or v1.123.32 immediately.
#n8n #CyberSecurity #RCE #InfoSec #PrototypePollution #PatchNow #Automation #JavaScript
https://t.co/3m2DXqz2jG
Adobe Acrobat Reader hit by a JavaScript zero-day that went undetected for months https://t.co/XBs0gk4kyf #AdobeReader #CVE202634621 #ZeroDay #Cybersecurity #ADBE #PDFSecurity #PrototypePollution #InfoSec #ThreatIntelligence #Adobe
Node-convict (CVE-2026-33864) faces a 9.4 CVSS Prototype Pollution flaw. Bypass filters and hijack Node.js apps. Update to version 6.2.5 now to stay secure.
#NodeJS #CyberSecurity #PrototypePollution #InfoSec #Vulnerability #Javascript #WebDev #PatchAlert
https://t.co/EpJ5CFSGri
Critical prototype pollution (CVE-2026-33863) in `Convict` via `load()`, `loadFile()`, schema init. Possible varied impacts. Assess usage for untrusted input. #PrototypePollution #SecurityAdvisory #InfoSec https://t.co/dd9aK8gMct
Prototype pollution in `set-in` (CVE-2022-25354) can lead to critical impact. Audit dependencies & replace affected versions. #Nodejs #PrototypePollution #Infosec https://t.co/wQlTP7ymfQ
Critical prototype pollution flaw (CVE-2026-27212) in the Swiper npm package allows RCE, DoS, and auth bypass. Update to version 12.1.2 immediately.
#Swiper #CVE202627212 #PrototypePollution #CyberSecurity #AppSec #npm #JavaScript #InfoSec
https://t.co/qb8pfQb6ea
Locutus is vulnerable to Prototype Pollution (CVE-2026-25521). Malicious property injection can lead to further compromise. Upgrade to 2.0.39. #locutus #PrototypePollution #infosec https://t.co/eLrXpc15n5
A Prototype Pollution vulnerability (CVE-2026-25047) affects deephas prior to version 1.0.8. Upgrade to mitigate the risk. #deephas #PrototypePollution #infosec https://t.co/ULYdixJWpj
🧬 Prototype Pollution: The Hidden JavaScript Risk
Attackers exploit JavaScript object prototypes through unvalidated input - silently altering app behavior.
📩 [email protected]
🌐 https://t.co/xaxtKkBaAr
#Bugv #PrototypePollution #JavaScriptSecurity #CyberSecurity #InfoSec
🕵️♂️ Bug Hunting – Day 11
🎯 Goal: Build a Recon Methodology + Continue Prototype Pollution
⏳ Time Budget: 2 hours
This one’s about structure and depth. Let’s go.
#BugBounty #Recon #Infosec #CyberSecurity #LearningInPublic #PrototypePollution
🕵️♂️ Bug Hunting – Day 8 Update !
🧪 Spent time diving into prototype pollution via blog + JS deep dives.
🔍 Explored potential issues & race conditions on target
💡 Ideated attack vectors and approaches.
#bugbounty #infosec #javascript #prototypepollution
¡Whitebox Attacks! 💪
#CodeReview #PrototypePollution #TimingAttacks #RaceConditions #TypeJuggling #ApplicationSecurity #AppSec #HTBAcademy
https://t.co/WTo6iWAAhS
Top 5 Open Source Vulnerabilities of the Last Two Weeks: May 5-18, 2025
#AuthTokens #ElasticSearch #PrototypePollution #GB18030 #DoS #MemoryLeak #OpenSourceSecurity #CVE #Vulnerability #PatchNow #DevSecOps #CyberSecurity #Hossted
آسیب پذیری از نوع #PrototypePollution هستش. آسیبپذیری Prototype pollution یک نقص امنیتی هستش که به مهاجمان اجازه میده اشیاء و ویژگیهای #جاوااسکریپت برنامه رو دستکاری کنن، که بطور بالقوه منجر به دسترسی غیرمجاز به داده، افزایش امتیاز، #DOS یا #RCE میشه.
New Blog Post
I wrote about Prototype Pollution, explaining how the bug works and showing how to exploit it using a PortSwigger lab.
🔗 Prototype Pollution – PortSwigger Lab
https://t.co/BlGnfmtZWA
#WebSecurity #BugBounty #PrototypePollution #CyberSecurity
Trends for you
Most Popular Users
Elon Musk 
@elonmusk
240.1M followers
Barack Obama
@barackobama
119.3M followers
Donald J. Trump
@realdonaldtrump
111.6M followers
Cristiano Ronaldo
@cristiano
108.8M followers
Narendra Modi
@narendramodi
106.9M followers
Rihanna
@rihanna
97.2M followers
NASA
@nasa
92.1M followers
Justin Bieber
@justinbieber
90.5M followers
KATY PERRY
@katyperry
86.7M followers
Taylor Swift
@taylorswift13
80.5M followers
Lady Gaga
@ladygaga
72.1M followers
Kim Kardashian
@kimkardashian
69.3M followers
YouTube
@youtube
68.6M followers
Virat Kohli
@imvkohli
68.4M followers
Bill Gates
@billgates
63.4M followers
The Ellen Show
@theellenshow
62.5M followers
CNN
@cnn
61.9M followers
Neymar Jr
@neymarjr
60.9M followers
X
@x
60.9M followers
CNN Breaking News
@cnnbrk
59.9M followers