Description
The package copy-props before 2.0.5 are vulnerable to Prototype Pollution via the main functionality.
Remediation
References
https://github.com/gulpjs/copy-props/pull/7
https://snyk.io/vuln/SNYK-JAVA-ORGWEBJARSNPM-1088047
https://snyk.io/vuln/SNYK-JS-COPYPROPS-1082870
Related Vulnerabilities
CVE-2022-21700 Vulnerability in maven package io.micronaut:micronaut-http
CVE-2016-5018 Vulnerability in maven package tomcat:jasper
CVE-2021-23400 Vulnerability in npm package nodemailer
CVE-2019-10793 Vulnerability in maven package org.webjars.bower:dot-object
CVE-2014-7810 Vulnerability in maven package org.apache.tomcat:el-api