VYPR

npm package

ts-fns

pkg:npm/ts-fns

Vulnerabilities (1)

  • CVE-2025-57351MedSep 24, 2025
    affected <= 13.1.3

    A prototype pollution vulnerability exists in the ts-fns package versions prior to 13.0.7, where insufficient validation of user-provided keys in the assign function allows attackers to manipulate the Object.prototype chain. By leveraging this flaw, adversaries may inject arbitra