Homepage

nested-property@2.0.0-beta1 vulnerabilities

Read, write or test a data structure's nested property via a string like 'my.nested.property'. It works through arrays and objects.'

  • latest version

    4.0.0

  • latest non vulnerable version

    4.0.0

  • first published

    11 years ago

  • latest version published

    5 years ago

  • licenses detected

  • View nested-property package health on Snyk Advisor  (opens in a new tab)
    • Go back to all versions of this package
    Report a new vulnerability Found a mistake?

    Direct Vulnerabilities

    Known vulnerabilities in the nested-property package. This does not include vulnerabilities belonging to this package’s dependencies.

    Fix vulnerabilities automatically

    Snyk's AI Trust Platform automatically finds the best upgrade path and integrates with your development workflows. Secure your code at zero cost.

    Fix for free
    VulnerabilityVulnerable Version
    • M
    Prototype Pollution

    nested-property is a Traverse a deeply nested JS data structure to get, set values, or test if values are part of the data structure. Nested property offers a simple syntax to define a path to access a value with.

    Affected versions of this package are vulnerable to Prototype Pollution. Is vulnerable when it performs a set operation for nested objects

    How to fix Prototype Pollution?

    Upgrade nested-property to version 3.0.0 or higher.

    <3.0.0
    Go back to all versions of this package