Prototype pollution is a class of vulnerabilities in
JavaScript
JavaScript (), often abbreviated as JS, is a programming language and core technology of the World Wide Web, alongside HTML and CSS. Ninety-nine percent of websites use JavaScript on the client side for webpage behavior.
Web browsers have ...
runtimes that allows attackers to overwrite arbitrary properties in an object's prototype.
In a prototype pollution attack, attackers inject properties into existing JavaScript construct prototypes, trying to compromise the application.
References
External links
Prototype Pollution Prevention Cheat Sheet - OWASP
{{Computer-security-stub
Web security exploits
Servers (computing)
JavaScript