2020-04-02 18:00:16
snyk
PUBLISHED
ini-parser through 0.0.2 is vulnerable to Prototype Pollution.The library could be tricked into adding or modifying properties of Object.prototype using a __proto__ payload.