Vulnerabilities > Merge Options Project

DATE CVE VULNERABILITY TITLE RISK
2018-07-03 CVE-2018-3752 Improper Input Validation vulnerability in Merge-Options Project Merge-Options 0.0.42/0.0.64/1.0.0
The utilities function in all versions <= 1.0.0 of the merge-options node module can be tricked into modifying the prototype of Object when the attacker can control part of the structure passed to this function.
network
low complexity
merge-options-project CWE-20
7.5