sds through 3.2.0 is vulnerable to Prototype Pollution.The library could be tricked into adding or modifying properties of the ‘Object.prototype’ by abusing the ‘set’ function located in ‘js/set.js’.
[
{
"product": "sds",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "All versions including 3.2.0"
}
]
}
]