Description
All versions of package querymen are vulnerable to Prototype Pollution if the parameters of exported function handler(type, name, fn) can be controlled by users without any sanitization. Note: This vulnerability derives from an incomplete fix of [CVE-2020-7600](https://security.snyk.io/vuln/SNYK-JS-QUERYMEN-559867).
Remediation
References
https://snyk.io/vuln/SNYK-JS-QUERYMEN-2391488
Related Vulnerabilities
CVE-2020-11050 Vulnerability in maven package org.java-websocket:java-websocket
CVE-2020-26256 Vulnerability in npm package @fast-csv/parse
CVE-2021-33562 Vulnerability in maven package com.shopizer:shopizer
CVE-2023-6293 Vulnerability in npm package sequelize-typescript
CVE-2022-39299 Vulnerability in npm package @node-saml/node-saml