CVE-2020-28271
npm/deephas
Improper Input Validation
Prototype pollution vulnerability in deephas may allow an attacker to cause a denial of service, or possibly lead to remote code execution.
All versions starting from 1.0.0 up to 1.0.5
Upgrade to version 1.0.7 or above.
2020-11-26
source |