Homepage
About Snyk

collection.js@6.7.0 vulnerabilities

Minimalistic JavaScript library for working with collections of data.

Go back to all versions of this package
Report a new vulnerability Found a mistake?

Direct Vulnerabilities

Known vulnerabilities in the collection.js package. This does not include vulnerabilities belonging to this package’s dependencies.

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.
Fix for free
Vulnerability Vulnerable Version
  • H
Prototype Pollution

collection.js is a Minimalistic JavaScript library for working with collections of data.

Affected versions of this package are vulnerable to Prototype Pollution via the extend function in Collection.js/dist/node/iterators/extend.js.

How to fix Prototype Pollution?

Upgrade collection.js to version 6.8.1 or higher.

<6.8.1
Go back to all versions of this package