Description
This affects all versions of package mootools. This is due to the ability to pass untrusted input to Object.merge()
Remediation
References
https://snyk.io/vuln/SNYK-JS-MOOTOOLS-1325536
Related Vulnerabilities
CVE-2021-21290 Vulnerability in maven package io.netty:netty-testsuite
CVE-2021-21361 Vulnerability in maven package com.bmuschko:gradle-vagrant-plugin
CVE-2021-28170 Vulnerability in maven package org.glassfish:jakarta.el
CVE-2022-41401 Vulnerability in maven package org.openrefine:main
CVE-2017-3200 Vulnerability in maven package org.graniteds:granite-generator