Raice Hannay

1 exploit Active since Aug 2022
CVE-2022-25907 WRITEUP HIGH WRITEUP
typescript_deep_merge < 2.0.2 - Prototype Pollution via Merge Function
The package ts-deepmerge before 2.0.2 are vulnerable to Prototype Pollution due to missing sanitization of the merge function.
CVSS 7.5