CVE-2025-57350 | csvtojson up to 2.0.9 parser_jsonarray prototype pollution (Issue 498)

A vulnerability marked as problematic has been reported in csvtojson up to 2.0.9. Affected by this issue is the function parser_jsonarray. This manipulation causes improperly controlled modification of object prototype attributes (‘prototype pollution’).

This vulnerability is tracked as CVE-2025-57350. The attack is only possible within the local network. Moreover, an exploit is present.

It is suggested to upgrade the affected component.VulDB Recent EntriesRead More