perceived vulnerability (prototype pollution) #830
Description
Triggered by: learnr/inst/lib/i18n/i18next.min.js
The i18next package is vulnerable to Prototype Pollution. The deepExtend() function in utils.js allows any object property to be overwritten. A remote attacker with control over any Javascript objects used in the i18next framework may pollute all object prototypes resulting in Remote Code Execution (RCE) or Denial-of-Service (DoS).
For more information refer to: i18next/i18next#1482