EPSS
Percentile
41.8%
nested-object-assign is vulnerable to prototype pollution. An attacker is able to inject properties into existing construct prototypes and modify attributes such as __proto__, constructor and prototype.
__proto__
constructor
prototype
github.com/Geta/NestedObjectAssign/commit/676f6b76c7f8c4866eea0a983eba0b7537dd170b
github.com/Geta/NestedObjectAssign/pull/11