fast-loops is vulnerable to Prototype Pollution. The vulnerability is due to missing checks in the objectMergeDeep function, allowing attackers to execute arbitrary code or cause a Denial of Service (DoS) via injecting arbitrary properties.
CPE | Name | Operator | Version |
---|---|---|---|
fast-loops | le | 1.1.3 | |
fast-loops | le | 1.1.3 |