VYPR

npm package

@alexbinary/object-deep-assign

pkg:npm/%40alexbinary/object-deep-assign

Vulnerabilities (1)

  • CVE-2024-36582CriJun 17, 2024
    affected <= 1.0.11

    alexbinary object-deep-assign 1.0.11 is vulnerable to Prototype Pollution via the extend() method of Module.deepAssign (/src/index.js)