0.0.0

DATE	CVE	VULNERABILITY TITLE	RISK
2018-07-03	CVE-2018-3751	Improper Input Validation vulnerability in Umbraengineering Merge-Recursive The utilities function in all versions <= 0.3.0 of the merge-recursive node module can be tricked into modifying the prototype of Object when the attacker can control part of the structure passed to this function. network low complexity umbraengineering CWE-20	7.5

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.