lodash-rails vulnerabilities

lodash for the Rails asset pipeline

Latest version: 4.17.15

Licenses detected

  • license: MIT >= 0
Continuously find & fix vulnerabilities like these in your dependencies. Test and protect your applications

Direct Vulnerabilities

Known vulnerabilities in the lodash-rails package. This does not include vulnerabilities belonging to this package’s dependencies.

Report new vulnerabilities
Vulnerability Vulnerable versions Snyk patch Published
  • M
Prototype Pollution
>=0.0.0 Not available 28 Apr, 2020
  • H
Prototype Pollution
<4.17.14 Not available 02 Jul, 2019
  • M
Regular Expression Denial of Service (ReDoS)
<4.17.11 Not available 05 Apr, 2019
  • H
Prototype Pollution
<4.17.11 Not available 01 Feb, 2019
  • M
Prototype Pollution
<4.17.5 Not available 14 Feb, 2018