Improperly Controlled Modification of Dynamically-Determined Object Attributes
Prototype pollution vulnerability in 'js-extend' allows attacker to cause a denial of service and may lead to remote code execution.
Advisories for Npm/Js-Extend package
2021