Description
The package bodymen from 0.0.0 are vulnerable to Prototype Pollution via the handler function which could be tricked into adding or modifying properties of Object.prototype using a __proto__ payload. **Note:** This vulnerability derives from an incomplete fix to [CVE-2019-10792](https://security.snyk.io/vuln/SNYK-JS-BODYMEN-548897)
Remediation
References
https://snyk.io/vuln/SNYK-JS-BODYMEN-2342623
Related Vulnerabilities
CVE-2020-7692 Vulnerability in maven package com.google.oauth-client:google-oauth-client
CVE-2020-28437 Vulnerability in npm package heroku-env
CVE-2020-5259 Vulnerability in maven package org.webjars.bower:dojox
CVE-2018-20821 Vulnerability in npm package node-sass
CVE-2020-8237 Vulnerability in maven package org.webjars.npm:json-bigint