Description
All versions of package config-handler are vulnerable to Prototype Pollution when loading config files.
Remediation
References
https://github.com/jarradseers/config-handler/issues/1
https://snyk.io/vuln/SNYK-JS-CONFIGHANDLER-1564947
Related Vulnerabilities
CVE-2022-2900 Vulnerability in maven package org.webjars.npm:parse-url
CVE-2021-23384 Vulnerability in npm package koa-remove-trailing-slashes
CVE-2019-18799 Vulnerability in maven package org.webjars.npm:node-sass
CVE-2021-4231 Vulnerability in npm package @angular/core
CVE-2020-7656 Vulnerability in maven package org.fujion.webjars:jquery