Description
The package bmoor before 0.8.12 are vulnerable to Prototype Pollution via the set function.
Remediation
References
https://github.com/b-heilman/bmoor/commit/7d4a086a1dc3ef11ed0b323824d02348734b7da5
https://snyk.io/vuln/SNYK-JS-BMOOR-598664
Related Vulnerabilities
CVE-2022-40955 Vulnerability in maven package org.apache.inlong:sort-connector-jdbc
CVE-2018-20835 Vulnerability in maven package org.webjars.npm:tar-fs
CVE-2021-32623 Vulnerability in maven package org.opencastproject:opencast-kernel
CVE-2022-48285 Vulnerability in maven package org.webjars:jszip
CVE-2011-2487 Vulnerability in maven package org.apache.cxf:cxf