Description
The package copy-props before 2.0.5 are vulnerable to Prototype Pollution via the main functionality.
Remediation
References
https://github.com/gulpjs/copy-props/pull/7
https://snyk.io/vuln/SNYK-JAVA-ORGWEBJARSNPM-1088047
https://snyk.io/vuln/SNYK-JS-COPYPROPS-1082870
Related Vulnerabilities
CVE-2021-44548 Vulnerability in maven package org.apache.solr:solr-core
CVE-2021-21331 Vulnerability in maven package com.datadoghq:datadog-api-client
CVE-2023-50732 Vulnerability in maven package org.xwiki.platform:xwiki-platform-index-tree-macro
CVE-2020-5289 Vulnerability in maven package com.yahoo.elide:elide-core
CVE-2021-21409 Vulnerability in maven package io.netty:netty-codec-http2