[GHSA-9pgh-qqpf-7wqj] Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') in @xmldom/xmldom and xmldom

[tzimmermann]

Updates

• Affected products

Comments
The fix for this CVE has been backported to the 0.7 branch as of v 0.7.6 as can be seen here:
xmldom/xmldom#441
https://github.com/xmldom/xmldom/releases/tag/0.7.6

[github]

Hi there @karfau! A community member has suggested an improvement to your security advisory. If approved, this change will affect the global advisory listed at github.com/advisories. It will not affect the version listed in your project repository.

This change will be reviewed by our highly-trained Security Curation Team. If you have thoughts or feedback, please share them in a comment here! If this PR has already been closed, you can start a new community contribution for this advisory

[tzimmermann]

Duplicate of #747