CVE-2020-28279

Prototype Pollution in npm/flattenizer

Identifier

CVE-2020-28279

Package Slug

npm/flattenizer

Vulnerability

Prototype Pollution

Description

Prototype pollution vulnerability in 'flattenizer' allows an attacker to cause a denial of service and may lead to remote code execution.

Affected Versions

All versions starting from 0.0.5 up to 1.0.5

Solution

Upgrade to version 1.1.1 or above.

Last Modified

2021-01-01

source