Questions tagged [lodash]

Lodash is a JavaScript library.

1 questions

votes

1 answer

How to deal with prototype pollution attack vulnerability in lodash?

lodash has been reported to be vulnerable to the so called prototype pollution attack in versions up to (excluding) 4.17.5 See https://nvd.nist.gov/vuln/detail/CVE-2018-3721 Now lodash is the most depended upon package in the JavaScript eco system.…

asked May 27 '19 at 09:45

borisdiakur