Injection Vulnerability
A prototype pollution vulnerability was found in just-extend that allows an attack to inject properties onto Object.prototype through its functions.
Advisories for Npm/Just-Extend package
2019
A prototype pollution vulnerability was found in just-extend that allows an attack to inject properties onto Object.prototype through its functions.