VYPR

npm package

@rvf/set-get

pkg:npm/%40rvf/set-get

Vulnerabilities (1)

  • CVE-2026-44483HigMay 27, 2026
    affected >= 7.0.0, < 7.0.2fixed 7.0.2

    RVF (formerly Remix Validated Form) provides easy form validation and state management for React. From 6.0.0 to before 6.0.4 and 7.0.2, setPath in @rvf/set-get (used by @rvf/core to flatten incoming form data into a nested object) does not block the keys __proto__, constructor, o