Description
Simple-Plist v1.3.0 was discovered to contain a prototype pollution vulnerability via .parse().
Remediation
References
https://github.com/wollardj/simple-plist/issues/60
Related Vulnerabilities
CVE-2022-35144 Vulnerability in npm package raneto
CVE-2023-44487 Vulnerability in maven package org.eclipse.jetty.http2:http2-common
CVE-2022-39381 Vulnerability in npm package hummus
CVE-2021-43138 Vulnerability in maven package org.webjars:async
CVE-2022-31197 Vulnerability in maven package org.postgresql:postgresql