Unpatched Prototype Pollution Flaw Affects All Versions of Popular Lodash Library

9 July 2019

Lodash, a popular npm library used by more than 4 million projects on GitHub alone, is affected by a high severity security vulnerability that could allow attackers to compromise the security of affected services using the library and their respective user base. Lodash is a JavaScript library that contains tools to simplify programming with strings, numbers, arrays, functions, and objects, helping programmers write and maintain their JavaScript code more efficiently.

Read full article on The Hacker News

Date:

9 July 2019

Categorie(s):

NEWS

Tag(s):

Flaws, Library, Pollution, Popular, Prototypes

Investigating lateral movements with Amazon Detective investigation and Security Lake integration14 May 2024
Microsoft fixes a bug abused in QakBot attacks plus a second under exploit14 May 2024
Unlocking cybersecurity excellence: The BISO’s vital role in safeguarding enterprises14 May 2024
FCC names and shames Royal Tiger AI robocall crew14 May 2024
Google patches 6th Chrome zero-day of 2024, three days after last one14 May 2024