mpath before 0.5.1 are vulnerable to prototype pollution. Provided certain input
mpath can add or modify properties of the
Object prototype. These properties will be present on all objects.
Update to version
0.5.1 or later.
Have content suggestions? Send them to [email protected]