Geta/NestedObjectAssign

Releases5

Frequency10 months 2 weeks

Last Release over 5 years ago

Stars7

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2021-23329 ↗	Jan 31, 2021Sunday, 31 January 2021, 16:15	7.5 HIGH	5 MEDIUM
The package nested-object-assign before 1.0.4 are vulnerable to Prototype Pollution via the default function, as demonstrated by running the PoC below.