Noodles Practicing Medicine
    Severity: critical

    Prototype Pollution

    js-extend

    Overview

    Prototype pollution vulnerability in 'js-extend' versions 0.0.1 through 1.0.1 allows attacker to cause a denial of service and may lead to remote code execution.

    Remediation

    Avoid using js-extend as there is no current safe version of this module

    Resources

    Have content suggestions? Visit npmjs.com/support.

    Advisory timeline

    1. published

      Advisory Published
      Jun 8th, 2021
    2. reported

      Reported by Anonymous
      Jun 8th, 2021