Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')
Versions of the package dottie before 2.0.4 is vulnerable to Prototype Pollution due to insufficient checks, via the set() function and the current variable in the /dottie.js file.