About
Community
iqiyi.com
34 packages
Last scanned on Oct 27 at 05:57 PM
Update
Name
Size
Popularity
Severity
lodash
4.17.16
Vulnerable
Outdated
Lodash modular utilities.
Script
https://stc.iqiyipic.com/gaze/pcw/ssr/app.b800eae9420391c6b157.js
License
MIT
Footprint
2 KB
Vulnerabilities
High
GHSA-35jh-r3h4-6jhm
Command Injection in lodash
Affected versions >=0 <4.17.21
Moderate
GHSA-29mw-wpgm-hmr9
Regular Expression Denial of Service (ReDoS) in lodash
Affected versions >=0 <4.17.21
High
GHSA-p6mc-m468-83gw
Prototype Pollution in lodash
Affected versions >=3.7.0 <4.17.19
Matched Modules
Version distribution in production
3 846
4.17.16
946
4.17.21
337
4.17.20
322
4.17.15
302
4.17.19
301
4.17.13
Also used on 4830 websites
skype.com
20 packages
sentry.io
157 packages
pinterest.com
56 packages
pinimg.com
52 packages
Repository
Homepage
More
modules
stdlib
util
axios
0.19.1 - 0.19.2
Vulnerable
Outdated
Promise based HTTP client for the browser and node.js
xhr
http
ajax
promise
node
+1
es5-ext
0.10.24 - 0.10.49
Vulnerable
Outdated
ECMAScript extensions and shims
ecmascript
ecmascript5
ecmascript6
es5
es6
+11
medikoo
readable-stream
2.3.4 - 2.3.7
Outdated
Node.js Streams, a user-land copy of the stream library from Node.js
readable
stream
pipe
brace-expansion
1.1.7 - 2.0.1
Outdated
Brace expansion as known from sh/bash
string_decoder
1.1.0 - 1.3.0
The string_decoder module from Node core
string
decoder
browser
browserify
+1
isarray
1.0.0 - 2.0.5
Array#isArray for older browsers
browser
isarray
array
juliangruber
inherits
2.0.3 - 2.0.4
Browser-friendly inheritance fully compatible with standard node.js inherits()
inheritance
class
klass
oop
object-oriented
+3
isaacs
buffer
4.6.0 - 4.9.2
Outdated
Node.js Buffer API, for the browser
arraybuffer
browser
browserify
buffer
compatible
+2
feross
balanced-match
0.4.2 - 1.0.0
Outdated
Match balanced character pairs, like "{" and "}"
match
regexp
test
balanced
parse
juliangruber
@babel/runtime
7.9.6 - 7.16.3
Outdated
babel's modular runtime helpers
+1
once
1.3.1 - 1.4.0
Run a function exactly one time
once
function
one
single
isaacs
wrappy
0.0.0 - 1.0.2
Callback wrapping utility
isaacs
concat-map
0.0.1 - 0.0.2
concatenative mapdashery
concat
concatMap
map
functional
higher-order
ljharb
core-util-is
1.0.2 - 1.0.3
The `util.is*` functions introduced in Node v0.12.
util
isBuffer
isArray
isNumber
isString
+4
isaacs
inflight
1.0.2 - 1.0.6
Add callbacks to requests in flight to avoid async duplication
isaacs
path-is-absolute
1.0.0 - 1.0.1
Outdated
Node.js 0.12 path.isAbsolute() ponyfill
path
paths
file
dir
absolute
+12
sindresorhus
base64-js
1.3.0 - 1.5.1
Base64 encoding/decoding in pure JS
base64
events
3.0.0 - 3.3.0
Node's event emitter for all engines.
events
eventEmitter
eventDispatcher
listeners
deepmerge
4.2.2
Outdated
A library for deep (recursive) merging of Javascript objects
merge
deep
extend
copy
clone
+1
tehshrike
core-js
2.6.11
Outdated
Standard library
ES3
ES5
ES6
ES7
ES2015
+39
zloirock
util
0.10.0 - 0.12.5
Node.js's util module for all engines
util
+3
path-browserify
0.0.0 - 0.0.1
Outdated
the path module from node core for browsers
browser
browserify
path
+36
assert
1.0.0 - 1.5.0
Outdated
The assert module from Node.js, for the browser.
assert
browser
+3
timers-browserify
2.0.9
Outdated
timers module for browserify
timers
browserify
browser
+36
p-is-promise
3.0.0 - 4.0.0
Check if something is a promise
promise
is
detect
check
kind
+7
sindresorhus
@sentry/browser
6.13.0 - 6.19.7
Outdated
Official Sentry SDK for browsers
+8
unfetch
4.1.0 - 4.2.0
Outdated
Bare minimum fetch polyfill in 500 bytes
fetch
polyfill
xhr
ajax
developit
vue
1.0.9 - 2.7.13
Outdated
The progressive JavaScript framework for building modern web UI.
vue
@hookform/resolvers
1.1.0
Outdated
React Hook Form validation resolvers: Yup, Joi, Superstruct, Zod, Vest, Class Validator, io-ts, Nope, computed-types, TypeBox, arktype and Typanion
scheme
validation
scheme-validation
hookform
react-hook-form
+14
scriptjs
2.5.6 - 2.5.9
Asyncronous JavaScript loader and dependency manager
ender
script
dependency
ajax
jsonp
+1
vue-no-ssr
1.1.1
Vue component to wrap non SSR friendly components
vue-client-only
2.0.0 - 2.1.0
Vue component to wrap non SSR friendly components
egoist
react-amphtml
3.0.0 - 3.0.1
Outdated
Use amphtml components inside your React apps easily!
react
amphtml
dfrankland
Popular search queries
webpack.js.org
url
react-scripts
react
lottie-api
react-helmet-async
+7 packages
github.com
color-convert
@headlessui/react
hoist-non-react-statics
reactstrap
lit-html
+60 packages
pinterest.com
lodash
relay-runtime
react-relay
react-use
lodash-es
+51 packages
Popular packages
react
React is a JavaScript library for building user interfaces.
+6 634 websites
core-js
Standard library
+10 238 websites
es5-ext
ECMAScript extensions and shims
+10 229 websites
@babel/runtime
babel's modular runtime helpers
+8 352 websites
lodash
Lodash modular utilities.
+4 826 websites
axios
Promise based HTTP client for the browser and node.js
+4 742 websites