expand-hash@0.2.2 vulnerabilities

Recursively expands property keys with dot-notation into objects.

latest version

1.0.1

first published

10 years ago

latest version published

6 years ago

licenses detected

MIT
>=0

View expand-hash package health on Snyk Advisor (opens in a new tab)

Go back to all versions of this package

Report a new vulnerability Found a mistake?

Direct Vulnerabilities

Known vulnerabilities in the expand-hash package. This does not include vulnerabilities belonging to this package’s dependencies.

How to fix?

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.

Fix for free

Vulnerability Vulnerable Version

Vulnerability	Vulnerable Version
M Prototype Pollution expand-hash is a Recursively expands property keys with dot-notation into objects. Affected versions of this package are vulnerable to Prototype Pollution. A Prototype pollution vulnerability exists in ‘expand-hash’ allows an attacker to cause a denial of service and may lead to remote code execution. How to fix Prototype Pollution? There is no fixed version for `expand-hash`.	*

Prototype Pollution

expand-hash is a Recursively expands property keys with dot-notation into objects.

Affected versions of this package are vulnerable to Prototype Pollution. A Prototype pollution vulnerability exists in ‘expand-hash’ allows an attacker to cause a denial of service and may lead to remote code execution.

How to fix Prototype Pollution?

There is no fixed version for expand-hash.

Go back to all versions of this package