doowb/expand-hash

Releases7

Frequency8 months 1 week

Last Release about 8 years ago

Stars24

Recursively expands property keys with dot-notation into objects.

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2021-25948 ↗	Jun 10, 2021Thursday, 10 June 2021, 12:15	9.8 CRITICAL	7.5 HIGH
Prototype pollution vulnerability in 'expand-hash' versions 0.1.0 through 1.0.1 allows an attacker to cause a denial of service and may lead to remote code execution.