Prototype Pollution in extend
Published Feb 7, 2019
Malicious code in @cplace-paw-fe/cf-training-extended (npm)
Published May 29, 2026
Prototype Pollution in just-extend
Published Feb 7, 2019
mockjs vulnerable to Prototype Pollution via the Util.extend function
Published Dec 8, 2023
Denial-of-Service Extended Event Loop Blocking in qs
Published Oct 9, 2018
Code Injection in node-extend
Published May 17, 2021
Malicious code in path-extend (npm)
Published Apr 14, 2026
Malicious code in vuepress-reading-time-extended (npm)
Published Jan 20, 2025
Prototype Pollution in deep-extend
Published Oct 9, 2018
Malicious code in chai-as-extended (npm)
Published Jan 28, 2026
Prototype Pollution in object-extend
Published Feb 19, 2022
Malicious code in smc-extendsession (npm)
Published Jun 20, 2022
Malicious code in dotenv-extend (npm)
Published Dec 23, 2025
Malicious code in no-use-extend-native (npm)
Published Dec 23, 2025
Malicious code in @ensdomains/hardhat-toolbox-viem-extended (npm)
Published Nov 24, 2025
Prototype Pollution in node.extend
Published Feb 7, 2019
Malicious code in jsontoken-extend (npm)
Published May 25, 2026
Malicious code in rdeepgextend (npm)
Published Aug 19, 2022
Malicious code in extendmine (npm)
Published Jan 21, 2025
Malicious code in buffer-util-extend (npm)
Published Apr 14, 2026
Malicious code in extended-path (npm)
Published Jan 13, 2026
Malicious code in extendshall4w (npm)
Published Aug 19, 2022
Prototype Pollution in extend2
Published Jan 12, 2022
Maker.js has Unsafe Property Copying in makerjs.extendObject
Published Jan 29, 2026
Malicious code in env-extend (npm)
Published Mar 24, 2026
Malicious code in sjcl-extended (npm)
Published Jun 20, 2022
Prototype pollution vulnerability in js-extend
Published Jun 8, 2021