Geta/NestedObjectAssign

on GitHub

5 releases

new releases every 10 months 2 weeks

last release was 01/28/2021

last checked today at 2:38 PM

CVE History

CVE	Published	CVSS v2	CVSS v3
CVE-2021-23329	January 31, 2021	7.5 HIGH	5 MEDIUM
The package nested-object-assign before 1.0.4 are vulnerable to Prototype Pollution via the default function, as demonstrated by running the PoC below.