All versions of package locutus are vulnerable to Prototype Pollution via the php.strings.parse_str function. Read more