0.004 Low
EPSS
Percentile
73.0%
taffy is vulnerable to direct object reference. An attacker is able to tamper the internal properties of the data item in its database and access any item by referencing an easily guessable internal index.
github.com/piscis/taffydb-node/blob/master/lib/taffy.js#L210