CVE-2020-7770
npm/json8
Improper Input Validation
The apply
function adds in the target object the property specified in the path, however it does not properly check the key being set, leading to a prototype pollution.
All versions before 1.0.3
Upgrade to version 1.0.3 or above.
2020-11-26
source |