CVE-2020-28503
Copy-props before 2.0.5 is vulnerable to Prototype Pollution via its main functionality. The issue arises from unsafe merge of objects, allowing an attacker to inject properties into Object.prototype (e.g., via proto ), with potential impact including denial of service and, in some descriptions, ...