Just-extend Project Just-extend — known CVE vulnerabilities
Every CVE whose affected-product data names Just-extend Project Just-extend, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (1)
CVE-2018-16489 — CVSS 9.8 (critical): A prototype pollution vulnerability was found in just-extend <4.0.0 that allows attack to inject properties onto Object.prototype through…