Prototype Pollution is one of the most underrated vulnerabilities that affect a lot of Node.js and JavaScript apps. By crafting the right payload we can poison the prototype chain changing the application flow and bypassing security checks. The most important part is to find a vulnerable piece of code that will rewrite user input to the new object accidentally polluting entire app.
Companies Mentioned
Lukasz Wronski
@lukaszwronski
Developer, hacker, father of two, bass player, internet troll and meme enthusiast...