Description
All versions of package confucious are vulnerable to Prototype Pollution via the set function.
Remediation
References
https://snyk.io/vuln/SNYK-JS-CONFUCIOUS-598665
Related Vulnerabilities
CVE-2022-1274 Vulnerability in maven package org.keycloak:keycloak-themes
CVE-2021-26539 Vulnerability in npm package sanitize-html
CVE-2020-11023 Vulnerability in maven package org.webjars.npm:jquery
CVE-2021-36686 Vulnerability in npm package yapi-vendor
CVE-2022-45146 Vulnerability in maven package org.bouncycastle:bc-fips