Description
All versions of package tiny-conf are vulnerable to Prototype Pollution via the set function.
Remediation
References
https://snyk.io/vuln/SNYK-JS-TINYCONF-598792
Related Vulnerabilities
CVE-2023-22491 Vulnerability in npm package gatsby-transformer-remark
CVE-2023-22621 Vulnerability in npm package @strapi/plugin-users-permissions
CVE-2020-7765 Vulnerability in npm package @firebase/util
CVE-2020-7691 Vulnerability in maven package org.webjars:jspdf
CVE-2023-29210 Vulnerability in maven package org.xwiki.platform:xwiki-platform-notifications-ui