Vulnerabilities/

steal vulnerable to Prototype Pollution via key variable in babel.js

Severity:: High

Description

Prototype pollution vulnerability in function extend in babel.js in stealjs steal via the key variable in babel.js.

Recommendation

No fix is available yet. Followings are affected versions:

<= 2.3.0

References

Related Issues

Tags:: npm; steal

Anything's wrong? Let us know Last updated on January 30, 2023