CNNVD-202509-3788 Information

CNNVD ID

CNNVD-202509-3788

Related CVE

CVE-2025-57323

• CNNVD Published: 2025-09-24

Description (Chinese)

Regularjs是regularjs开源的一个创建数据驱动组件的js库。 Regularjs 0.2.0及之前版本存在安全漏洞，该漏洞源于mp.addEventHandler函数存在原型污染，可能导致拒绝服务攻击。

Description (English)

Regularjs is a js library for the creation of data-driven components from the open source of regularjs. There is a safety gap in Regularjs 0.2.0 and earlier versions, which stems from the prototype contamination of the mp.addEventhandler function, which may lead to a denial of service attack.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

regularjs

Published

2025-09-24

Last Modified

2026-02-24

References

https://github.com/VulnSageAgent/PoCs/blob/main/JavaScript/prototype-pollution/mpregular%400.2.0/index.js https://github.com/VulnSageAgent/PoCs/tree/main/JavaScript/prototype-pollution/CVE-2025-57323