Description
In all versions of package casperjs, the mergeObjects utility function is susceptible to Prototype Pollution.
Remediation
References
https://github.com/casperjs/casperjs/blob/master/modules/utils.js%23L680
https://snyk.io/vuln/SNYK-JAVA-ORGWEBJARSBOWER-572804
https://snyk.io/vuln/SNYK-JS-CASPERJS-572803
Related Vulnerabilities
CVE-2022-22965 Vulnerability in maven package org.springframework.boot:spring-boot-starter-web
CVE-2018-18853 Vulnerability in maven package io.spray:spray-json_2.12
CVE-2022-23059 Vulnerability in maven package com.shopizer:shopizer
CVE-2022-42004 Vulnerability in maven package com.fasterxml.jackson.core:jackson-databind
CVE-2021-43980 Vulnerability in maven package org.apache.tomcat:tomcat