CVE

CVE-2021-23329

CVE-2021-23329

The package nested-object-assign before 1.0.4 are vulnerable to Prototype Pollution via the default function, as demonstrated by running the PoC below.

Source: CVE-2021-23329

Exit mobile version