eivindfjeldstad-dot below 1.0.3 is vulnerable to Prototype Pollution.The function 'set' could be tricked into adding or modifying properties of 'Object.prototype' using a '__proto__' payload.
| Package (Ecosystem) | Introduced | Fixed | Limit |
|---|---|---|---|
| @eivifj/dot(npm) | 0 | 1.0.3 | N/A |
CVSS Metrics
