HIGH
WebReflection
CVE published 2026-03-20
CVE-2026-33228
CVE-2026-33228 is a vulnerability in the Flatted circular JSON parser, which allows an attacker to pollute the global prototype by providing unvalidated string values as direct array index keys. This issue was patched in version 3.4.2. The vulnerability has a CVSS score of 8.9 and is considered HIGH severity. The CVE was published on March 20, 2026, and last modified on June 27, 2026. The vulnerability af [truncated]