CVE-2021-3666
npm/body-parser-xml
Improperly Controlled Modification of Dynamically-Determined Object Attributes
body-parser-xml is vulnerable to Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')
All versions before 2.0.3
Upgrade to version 2.0.3 or above.
2021-09-24
source |