Description
All versions of package arr-flatten-unflatten are vulnerable to Prototype Pollution via the constructor.
Remediation
References
https://snyk.io/vuln/SNYK-JS-ARRFLATTENUNFLATTEN-598396
Related Vulnerabilities
CVE-2020-7663 Vulnerability in maven package org.webjars.npm:websocket-extensions
CVE-2021-23419 Vulnerability in npm package open-graph
CVE-2022-22947 Vulnerability in maven package org.springframework.cloud:spring-cloud-gateway
CVE-2020-35149 Vulnerability in npm package mquery
CVE-2020-7792 Vulnerability in maven package org.webjars:mout