Description
All versions of package confucious are vulnerable to Prototype Pollution via the set function.
Remediation
References
https://snyk.io/vuln/SNYK-JS-CONFUCIOUS-598665
Related Vulnerabilities
CVE-2022-25927 Vulnerability in maven package org.webjars.bowergithub.faisalman:ua-parser-js
CVE-2022-0748 Vulnerability in npm package post-loader
CVE-2020-7691 Vulnerability in maven package org.webjars:jspdf
CVE-2021-23445 Vulnerability in npm package datatables.net
CVE-2022-30973 Vulnerability in maven package org.apache.tika:tika