Critical severity9.8NVD Advisory· Published Sep 1, 2020· Updated Jun 17, 2026
CVE-2020-7713
CVE-2020-7713
Description
All versions of package arr-flatten-unflatten are vulnerable to Prototype Pollution via the constructor.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
arr-flatten-unflattennpm | <= 1.1.4 | — |
Affected products
2- arr-flatten-unflatten/arr-flatten-unflattendescription
Patches
Vulnerability mechanics
References
5- snyk.io/vuln/SNYK-JS-ARRFLATTENUNFLATTEN-598396nvdExploitThird Party AdvisoryWEB
- github.com/advisories/GHSA-w8f3-pvx4-4c3hghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2020-7713ghsaADVISORY
- github.com/Quernest/arr-flatten-unflatten/commit/cb4351c75f87a4fbec3b6140c40ee2993f574372ghsaWEB
- github.com/Quernest/arr-flatten-unflatten/pull/8ghsaWEB
News mentions
0No linked articles in our index yet.