CVE-2021-3766
npm/objection
Improperly Controlled Modification of Dynamically-Determined Object Attributes
objection.js is vulnerable to Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')
All versions before 3.0.0-alpha.5
Upgrade to version 3.0.0-alpha.5 or above.
2021-09-16
source |