End-to-end Showcase Walkthroughs

Each page below walks through the full exploitation chain for a confirmed class pollution vulnerability: the vulnerable function, the pollution payload, the trigger, and the resulting consequence.

For the assigned CVEs and the index of every walkthrough, see Showcases & CVEs. For the full 76-package list, see the Catalog.

• Azure CLI - Token Leakage and OS Command Injection through set_properties.
• ComfyUI - DoS through reflective attribute setting.
• django-unicorn - DoS, XSS, Auth Bypass, and RCE through a single WebSocket message.
• Mesop - DoS and Remote Execution through reflective dataclass update.
• ragflow - Class pollution via reflective attribute setting.
• Taipy - DoS, XSS, RCE, and Token Leakage through _attrsetter.