Vulnerabilities > SET IN Project > SET IN > 2.0.2
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2022-03-17 | CVE-2022-25354 | Unspecified vulnerability in Set-In Project Set-In The package set-in before 2.0.3 are vulnerable to Prototype Pollution via the setIn method, as it allows an attacker to merge object prototypes into it. | 7.5 |