CVE-2023-26113, GHSA-47pj-q2vm-46xc
npm/collection.js
Collection.js vulnerable to Prototype Pollution
Versions of the package collection.js before 6.8.1 is vulnerable to Prototype Pollution via the extend function in Collection.js/dist/node/iterators/extend.js.
All versions before 6.8.1
Upgrade to version 6.8.1 or above.
2023-03-22
source |