CVE-2019-10808
utilitify prior to 1.0.3 allows modification of object properties. The merge method could be tricked into adding or modifying properties of the Object.prototype.
- xcritical.software utilitify -
- xcritical.software utilitify 1.0.0
- xcritical.software utilitify 1.0.1
- xcritical.software utilitify 1.0.2