EPSS
Percentile
86.8%
klona is vulnerable to prototype pollution. Lack of object validation allows an attacker to inject arbitrary Object properties which can potentially lead to execution of arbitrary code.
github.com/lukeed/klona/pull/11/files
hackerone.com/reports/778414
www.npmjs.com/advisories/1463