CVE-2021-23329

2021-01-31T16:15:00
ID CVE-2021-23329
Type cve
Reporter report@snyk.io
Modified 2021-02-05T18:37:00

Description

The package nested-object-assign before 1.0.4 are vulnerable to Prototype Pollution via the default function, as demonstrated by running the PoC below.