pathval@1.0.0 vulnerabilities

Object value retrieval given a string path

Known vulnerabilities in the pathval package. This does not include vulnerabilities belonging to this package’s dependencies.

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.

Vulnerability	Vulnerable Version
M Prototype Pollution pathval is an Object value retrieval given a string path Affected versions of this package are vulnerable to Prototype Pollution. PoC `var pathval = require('pathval'); var obj = {}; pathval.setPathValue(obj, '__proto__.polluted', true); console.log(polluted); // true` How to fix Prototype Pollution? Upgrade `pathval` to version 1.1.1 or higher.	<1.1.1