0.001 Low
EPSS
Percentile
40.8%
Versions of mixin-deep before 1.3.1 are vulnerable to prototype pollution via merging functions.
mixin-deep
Update to version 1.3.1 or later.
github.com/advisories/GHSA-3mpr-hq3p-49h9
github.com/jonschlinkert/mixin-deep/commit/578b0bc5e74e14de9ef4975f504dc698796bdf9c
hackerone.com/reports/311236
nvd.nist.gov/vuln/detail/CVE-2018-3719
www.npmjs.com/advisories/578