Launch Week Day 1: Announcing Security Design Review
Start for Free
npm

lodash-es

View on npm registry
8 Total advisories
8 Vulnerabilities
0 Malware

Vulnerabilities

MEDIUM 6.5
npm

CVE-2025-13465

Lodash has Prototype Pollution Vulnerability in `_.unset` and `_.omit` functions
HIGH 8.1
npm

CVE-2026-4800

lodash vulnerable to Code Injection via `_.template` imports key names
MEDIUM 6.5
npm

CVE-2026-2950

lodash vulnerable to Prototype Pollution via array path bypass in `_.unset` and `_.omit`
CRITICAL 9.1
npm

CVE-2019-10744

Prototype Pollution in lodash
MEDIUM 6.5
npm

CVE-2019-1010266

Regular Expression Denial of Service (ReDoS) in lodash
MEDIUM 5.3
npm

CVE-2020-28500

Regular Expression Denial of Service (ReDoS) in lodash
HIGH 7.4
npm

CVE-2020-8203

Prototype Pollution in lodash
HIGH 7.2
npm

CVE-2021-23337

Command Injection in lodash

Ready to move

Start Securing

Start for Free Get Demo

Free, no credit card | First findings in minutes