Any risk when trying to read the key to an object that comes from the user?

Question

Any risk when trying to read the key to an object that comes from the user?

We write out the API (node module), and we have the following code fragment:

function myFunc(dataFromUser){ var dataArr = Object.keys(dataFromUser).map(function(key){ return {name: key, value: dataFromUser[key]}; }); }

Users will use myFunc directly, that is, they will pass any object that they want.

Ignoring how dataArr will be used, anyway, when at the point dataFromUser[key] is evaluated, are we vulnerable? Maybe the user can implement getter in a way that could harm us?

+5

javascript getter

Adelin Mar 22 '18 at 13:23

source share

No one has answered this question yet.

See related questions:

5722

How to remove a property from a JavaScript object?

2685

Checking for a key in a JavaScript object?

1435

How to efficiently count the number of keys / properties of an object in JavaScript?

1262

What is the best way to add options to select from a JS object using jQuery?

1068

How to remove a key from a JavaScript object?

1010

How to add a key / value pair to a JavaScript object?

713

HTML coding is lost when an attribute is read from an input field

639

How to check if an object has a key in JavaScript?

596

Checking for a JavaScript object nested object

517

JavaScript object key specified by the variable

Any risk when trying to read the key to an object that comes from the user?

More articles: