field is vulnerable to Prototype Pollution. Failure to sanitize the field in the levelUp
function and moveUp
function allows for injection of arbitrary properties into existing construct prototypes and modification of attributes such as __proto__
, constructor
and prototype
.