1013:mixin-deep:Prototype Pollution

CVES CVE-2019-10746
CWE CWE-471
References: - [Snyk Report](https://snyk.io/vuln/SNYK-JS-MIXINDEEP-450212)
Versions of `mixin-deep` prior to 2.0.1 or 1.3.2 are vulnerable to Prototype Pollution. The `mixinDeep` function fails to validate which Object properties it updates. This allows attackers to modify the prototype of Object, causing the addition or modification of an existing property on all objects.


@ambergkim 

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

1013:mixin-deep:Prototype Pollution #19

Metadata

Assignees

Labels

Projects

Milestone

Relationships

Development

1013:mixin-deep:Prototype Pollution #19

Description

Metadata

Metadata

Assignees

Labels

Projects

Milestone

Relationships

Development

Issue actions