0.007 Low
EPSS
Percentile
79.7%
deeply is vulnerable to prototype pollution. The vulnerability exists because it does not handle the unsafe keys, like __proto__ , allowing the functionassign-deep to add or modify properties of Object.prototype using a _proto_ payload.
__proto__
assign-deep
_proto_
github.com/alexindigo/deeply/commit/6eccb2f03ec8d3eefc6805053c4cc2a36aab1505