CVE-2026-25047
CVE-2026-25047 affects the deephas npm package, specifically version 1.0.7, which contains a prototype pollution vulnerability in its handling of nested object keys. The issue allows an attacker to modify global object behavior (e.g., via constructor.prototype.polluted or proto .polluted) and can...