publicintegrity.org 11 packages
Last scanned on Oct 27 at 06:27 PM
lodash 4.17.16VulnerableOutdated
Lodash modular utilities.
License
MIT
Footprint
1 KB
Vulnerabilities
ModerateGHSA-29mw-wpgm-hmr9
Regular Expression Denial of Service (ReDoS) in lodash
Affected versions >=0 <4.17.21
Matched Modules
Version distribution in production
3 846
4.17.16
946
4.17.21
337
4.17.20
322
4.17.15
302
4.17.19
301
4.17.13
Also used on 4830 websites
qs 6.11.0Outdated
A querystring parser that supports nesting and arrays, with a depth limit
get-intrinsic 1.1.0 - 1.1.1Outdated
Get and robustly cache all JS language-level intrinsics at first require time
call-bind 1.0.2Outdated
Robustly `.call.bind()` a function
ljharb
object-inspect 1.12.2Outdated
string representations of objects in node and the browser
has-symbols 1.0.2 - 1.0.3
Determine if the JS environment has Symbol support. Supports spec, or shams.
side-channel 1.0.4Outdated
Store information about any JS value in a side channel. Uses WeakMap if available.
has 1.0.1 - 1.0.3Outdated
Object.prototype.hasOwnProperty.call shortcut
tarruda
email-validator 2.0.4
Provides a fast, pretty robust e-mail validator. Only checks form, not function.
Popular search queries
Popular packages
react
React is a JavaScript library for building user interfaces.
+6 634 websites
core-js
Standard library
+10 238 websites
es5-ext
ECMAScript extensions and shims
+10 229 websites
@babel/runtime
babel's modular runtime helpers
+8 352 websites
lodash
Lodash modular utilities.
+4 826 websites
axios
Promise based HTTP client for the browser and node.js
+4 742 websites