CVE-2021-23568, GHSA-gjm5-83cw-p3p2
npm/extend2
Prototype Pollution in extend2
The package extend2 is vulnerable to Prototype Pollution via the extend function due to unsafe recursive merge.
All versions before 1.0.1
Upgrade to version 1.0.1 or above.
2022-01-13
source |