Merge

This hub aggregates every CVE we track for Merge, a product in the oss libraries space. Use it to gauge the current risk picture and drill into individual advisories.

Severity distribution

Monthly trend

The 6 most recently published vulnerabilities affecting Merge.

• CVE-2026-6594brikcss merge prototype pollution7.3Apr 20, 2026
• CVE-2021-23397Prototype Pollution5.6Jul 25, 2022
• CVE-2021-3645Prototype Pollution in viking04/merge9.8Sep 10, 2021
• CVE-2020-28499Prototype Pollution7.3Feb 18, 2021
• CVE-2018-16469The merge.recursive function in the merge package <1.2.1 can be tricked into adding or modifying properties of the Object prototype. These properties will be present on all objects allowing for a d...7.5Oct 30, 2018
• CVE-2012-2980The Samsung and HTC onTouchEvent method implementation for Android on the T-Mobile myTouch 3G Slide, HTC Merge, Sprint EVO Shift 4G, HTC ChaCha, AT&T Status, HTC Desire Z, T-Mobile G2, T-Mobile myT...7.1Aug 21, 2012