About
Community
shaneco.com
30 packages
Last scanned on Jan 19 at 12:19 PM
Update
Name
Size
Popularity
Severity
lodash-es
3.0.0 - 4.10.0
Vulnerable
Outdated
Lodash exported as ES modules.
Script
https://shaneco.com/_ui/responsive/common/js/bundle_lodash_vendor.js?tRef=202211221827
License
MIT
Footprint
57 B
Vulnerabilities
Critical
GHSA-jf85-cpcp-j695
Prototype Pollution in lodash
Affected versions >=0 <4.17.14
Moderate
GHSA-x5rq-j2xg-h7qm
Regular Expression Denial of Service (ReDoS) in lodash
Affected versions >=0 <4.17.11
High
GHSA-35jh-r3h4-6jhm
Command Injection in lodash
Affected versions >=0 <4.17.21
Moderate
GHSA-29mw-wpgm-hmr9
Regular Expression Denial of Service (ReDoS) in lodash
Affected versions >=0 <4.17.21
Matched Modules
Version distribution in production
3 519
4.17.21
1 221
4.17.20
526
4.10.0
420
4.17.11
419
4.17.15
418
4.17.13
Also used on 4452 websites
skype.com
20 packages
snapchat.com
69 packages
sentry.io
157 packages
pinterest.com
56 packages
Repository
Homepage
More
es6
modules
stdlib
util
lodash
4.17.16
Vulnerable
Outdated
Lodash modular utilities.
modules
stdlib
util
uuid
7.0.0 - 8.0.0
Outdated
RFC4122 (v1, v4, and v5) UUIDs
uuid
guid
rfc4122
react-is
16.3.0 - 16.13.1
Outdated
Brand checking of React Elements.
react
+1
@babel/runtime
7.13.6 - 7.13.7
Outdated
babel's modular runtime helpers
+1
core-js
2.6.6 - 2.6.12
Outdated
Standard library
ES3
ES5
ES6
ES7
ES2015
+39
zloirock
scheduler
0.15.0 - 0.23.0
Outdated
Cooperative scheduler for the browser environment.
react
+1
prop-types
15.7.0 - 15.7.2
Outdated
Runtime type checking for React props and similar objects.
react
react
16.13.0 - 17.0.2
Outdated
React is a JavaScript library for building user interfaces.
react
+1
date-fns
0.14.11 - 0.15.0
Outdated
Modern JavaScript date utility library
kossnocorp
lodash.isplainobject
4.0.6
The lodash method `_.isPlainObject` exported as a module.
lodash-modularized
isplainobject
hoist-non-react-statics
3.3.1 - 3.3.2
Copies non-react specific statics from a child component to a parent component
react
mridgway
redux
3.2.1 - 3.7.2
Outdated
Predictable state container for JavaScript apps
redux
reducer
state
predictable
functional
+6
+3
superagent
3.8.0 - 8.0.8
Outdated
elegant & feature rich browser / node HTTP with a fluent API
agent
ajax
ajax
api
async
+25
+4
@angular-devkit/core
0.0.15 - 0.0.23
Outdated
Angular DevKit - Core Utility Library
Angular CLI
Angular DevKit
angular
core
devkit
+1
crypto-browserify
1.0.9 - 2.0.0
Outdated
implementation of crypto for the browser
+2
js-cookie
3.0.1
Outdated
A simple, lightweight JavaScript API for handling cookies
cookie
cookies
browser
amd
commonjs
+3
react-redux
5.1.2
Outdated
Official React bindings for Redux
react
reactjs
redux
+2
expand-template
1.0.0 - 1.0.4
Outdated
Expand placeholders in a template string
template
expand
replace
ralphtheninja
redux-thunk
2.1.0 - 2.4.2
Outdated
Thunk middleware for Redux.
redux
thunk
middleware
redux-middleware
flux
+2
lodash.isfunction
3.0.9
The Lodash method `_.isFunction` exported as a module.
lodash-modularized
isfunction
@firebase/util
0.4.0 - 1.8.0
Outdated
_NOTE: This is specifically tailored for Firebase JS SDK usage, if you are not a member of the Firebase team, please avoid using this package_
+1
xss
0.3.6 - 1.0.6
Outdated
Sanitize untrusted HTML (to prevent XSS) with a configuration specified by a Whitelist
sanitization
xss
sanitize
sanitisation
input
+8
leizongmin
cssfilter
0.0.4 - 0.0.10
Sanitize untrusted CSS with a configuration specified by a Whitelist. 根据白名单过滤CSS
sanitization
xss
sanitize
sanitisation
input
+9
leizongmin
@firebase/auth
0.19.6 - 0.20.2
Outdated
The Firebase Authenticaton component of the Firebase JS SDK.
+1
@firebase/remote-config
0.2.0 - 0.4.0
Outdated
The Remote Config package of the Firebase JS SDK
+1
rc-picker
1.0.0 - 2.1.0
Outdated
React date & time picker
react
react-component
react-picker
+3
@splitsoftware/splitio
10.4.0 - 10.17.3
Outdated
Split SDK
splitio
sdk
javascript
+5
@stimulus/core
0.6.0
Outdated
Stimulus JavaScript framework: Core library
dhh
web-speech-cognitive-services
3.0.0 - 4.0.0
Outdated
Polyfill Web Speech API with Cognitive Services Speech-to-Text service
cognitive services
dictation
microphone
polyfill
react
+14
compulim
Popular search queries
webpack.js.org
url
react-scripts
react
lottie-api
react-helmet-async
+7 packages
github.com
color-convert
@headlessui/react
hoist-non-react-statics
reactstrap
lit-html
+60 packages
pinterest.com
lodash
relay-runtime
react-relay
react-use
lodash-es
+51 packages
Popular packages
react
React is a JavaScript library for building user interfaces.
+6 634 websites
core-js
Standard library
+10 238 websites
es5-ext
ECMAScript extensions and shims
+10 229 websites
@babel/runtime
babel's modular runtime helpers
+8 352 websites
lodash
Lodash modular utilities.
+4 826 websites
axios
Promise based HTTP client for the browser and node.js
+4 742 websites