ini-parser through 0.0.2 is vulnerable to Prototype Pollution.The library could be tricked into adding or modifying properties of Object.prototype using a '__proto__' payload.
| Package (Ecosystem) | Introduced | Fixed | Limit |
|---|---|---|---|
| ini-parser(npm) | 0 | N/A | N/A |
CVSS Metrics
