CVE-2020-7644
fun-map through 3.3.1 is vulnerable to Prototype Pollution. The function assocInM could be tricked into adding or modifying properties of ‘Object.prototype’ using a ‘__proto__’ payload.
Date published : 2020-04-28
https://github.com/nathan7/fun-map/blob/master/index.js#L137,