think-helper is vulnerable to prototype pollution. An attacker is able to provide an untrusted input via an upstream component and subsequently modify attributes that are to be initialized or updated in an object.
CPE | Name | Operator | Version |
---|---|---|---|
think-helper | le | 1.1.2 | |
think-helper | le | 1.1.2 |