Vulnerability	Vulnerable Version
H Class Pollution mesop is a Build UIs in Python Affected versions of this package are vulnerable to Class Pollution in the `_recursive_update_dataclass_from_json_obj()` function, which doesn't raise an exception for dunder (`__`) properties. An attacker can cause denial of service by overwriting these elements, leading to server unresponsiveness. If the resulting values of these elements can be controlled in a given runtime, this could facilitate further exploits such as user impersonation and data corruption. How to fix Class Pollution? Upgrade `mesop` to version 0.14.1 or higher.	[,0.14.1)
H Class Pollution mesop is a Build UIs in Python Affected versions of this package are vulnerable to Class Pollution via the `dataclass_utils` component. How to fix Class Pollution? Upgrade `mesop` to version 0.14.1 or higher.	[,0.14.1)

Class Pollution

mesop is a Build UIs in Python

Affected versions of this package are vulnerable to Class Pollution in the _recursive_update_dataclass_from_json_obj() function, which doesn't raise an exception for dunder (__) properties. An attacker can cause denial of service by overwriting these elements, leading to server unresponsiveness. If the resulting values of these elements can be controlled in a given runtime, this could facilitate further exploits such as user impersonation and data corruption.

How to fix Class Pollution?

Upgrade mesop to version 0.14.1 or higher.

[,0.14.1)

Class Pollution

mesop is a Build UIs in Python

Affected versions of this package are vulnerable to Class Pollution via the dataclass_utils component.

How to fix Class Pollution?

Upgrade mesop to version 0.14.1 or higher.

[,0.14.1)

Go back to all versions of this package