Seal Security raises $13M series A to secure open source code at scale. Read full press release.
.avif)
Versions of `lodash` before 4.17.11 are vulnerable to prototype pollution. The vulnerable functions are 'defaultsDeep', 'merge', and 'mergeWith' which allow a malicious user to modify the prototype of `Object` via `{constructor: {prototype: {...}}}` causing the addition or modification of an existing property that will exist on all objects.## RecommendationUpdate to version 4.17.11 or later.
Fix available through Seal Security. No upgrade required, protect your application instantly.
Fix without upgrading