Description
The package keyget from 0.0.0 are vulnerable to Prototype Pollution via the methods set, push, and at which could allow an attacker to cause a denial of service and may lead to remote code execution. **Note:** This vulnerability derives from an incomplete fix to [CVE-2020-28272](https://security.snyk.io/vuln/SNYK-JS-KEYGET-1048048)
Remediation
References
https://snyk.io/vuln/SNYK-JS-KEYGET-2342624
Related Vulnerabilities
CVE-2020-15152 Vulnerability in npm package ftp-srv
CVE-2022-21704 Vulnerability in npm package log4js
CVE-2022-31183 Vulnerability in maven package co.fs2:fs2-io_sjs1_2.13
CVE-2022-36891 Vulnerability in maven package org.jenkins-ci.plugins:deployer-framework
CVE-2022-46907 Vulnerability in maven package org.apache.jspwiki:jspwiki-war