0.002 Low
EPSS
Percentile
61.8%
ini-parser is vulnerable to prototype pollution. An attacker is able to add and modify arbitrary properties via Object.prototype using a __proto__ payload.
Object.prototype
__proto__
github.com/rawiroaisen/node-ini-parser/blob/master/index.js#L10-L14
github.com/rawiroaisen/node-ini-parser/blob/master/index.js#L14