CVE-2020-28503

Prototype Pollution in npm/copy-props

Identifier

CVE-2020-28503

Package Slug

npm/copy-props

Vulnerability

Prototype Pollution

Description

copy-props is vulnerable to Prototype Pollution due to lack of validation in index.js.

Affected Versions

All versions before 2.0.5

Solution

Upgrade to version 2.0.5 or above.

Last Modified

2021-03-30

source