-
CVSS Score
-Basic Information
Technical Details
Vulnerability Intelligence
Miggo AI
Miggo AIMiggo AI| Package Name | Ecosystem | Vulnerable Versions | First Patched Version |
|---|---|---|---|
| fastest-json-copy | npm | <= 1.0.1 |
Miggo AIRoot Cause AnalysisThe vulnerability stems from improper input validation during object cloning. The primary exposed function 'copy' is responsible for deep cloning objects. The exploit example demonstrates Prototype Pollution occurs when passing objects containing 'proto' properties to this function. While the exact implementation isn't visible in provided sources, the advisory evidence and package's core functionality indicate the copy function lacks prototype pollution protections like property name validation or safe property assignment patterns.