94 matches found
CVE-2025-13465
Lodash versions 4.0.0 through 4.17.22 are vulnerable to prototype pollution in the .unset and .omit functions. An attacker can pass crafted paths which cause Lodash to delete methods from global prototypes. The issue permits deletion of properties but does not allow overwriting their original...
CVE-2025-13465 Prototype Pollution Vulnerability in Lodash _.unset and _.omit functions
Lodash versions 4.0.0 through 4.17.22 are vulnerable to prototype pollution in the .unset and .omit functions. An attacker can pass crafted paths which cause Lodash to delete methods from global prototypes. The issue permits deletion of properties but does not allow overwriting their original...
CVE-2025-13465 Prototype Pollution Vulnerability in Lodash _.unset and _.omit functions
Lodash versions 4.0.0 through 4.17.22 are vulnerable to prototype pollution in the .unset and .omit functions. An attacker can pass crafted paths which cause Lodash to delete methods from global prototypes. The issue permits deletion of properties but does not allow overwriting their original...
CVE-2025-13465 Prototype Pollution Vulnerability in Lodash _.unset and _.omit functions
Lodash versions 4.0.0 through 4.17.22 are vulnerable to prototype pollution in the .unset and .omit functions. An attacker can pass crafted paths which cause Lodash to delete methods from global prototypes. The issue permits deletion of properties but does not allow overwriting their original...
CVE-2025-13465
Lodash versions 4.0.0 through 4.17.22 are vulnerable to prototype pollution in the .unset and .omit functions. An attacker can pass crafted paths which cause Lodash to delete methods from global prototypes. The issue permits deletion of properties but does not allow overwriting their original...
EUVD-2025-206319
Lodash versions 4.0.0 through 4.17.22 are vulnerable to prototype pollution in the .unset and .omit functions. An attacker can pass crafted paths which cause Lodash to delete methods from global prototypes. The issue permits deletion of properties but does not allow overwriting their original...
CVE-2025-13465
CVE-2025-13465 affects Lodash
lodash security vulnerabilities
lodash is an open-source JavaScript utility library developed by Lodash Utilities. Lodash versions 4.17.22 and earlier contained security vulnerabilities. These vulnerabilities stemmed from prototype pollution in the .unset and .omit functions, which could allow attackers to delete global...
EUVD-2025-26126
Malicious code in bioql PyPI...
PT-2026-3846
Name of the Vulnerable Software and Affected Versions Lodash versions 4.0.0 through 4.17.22 Description Lodash versions 4.0.0 through 4.17.22 are susceptible to prototype pollution within the .unset and .omit functions. An attacker can leverage crafted paths to trigger the deletion of methods fro...
OpenSSH Security Vulnerabilities
OpenSSH OpenBSD Secure Shell is a set of connection tools for secure access to remote computers from the Canadian OpenBSD Project Group. The tools are an open source implementation of the SSH protocol that supports encryption of all transmissions, effectively blocking eavesdropping, connection...
CentOS 8 : container-tools:3.0 (CESA-2022:7529)
The remote CentOS Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the CESA-2022:7529 advisory. - golang: net/http: improper sanitization of Transfer-Encoding header CVE-2022-1705 - cri-o: memory exhaustion on the node when access to the kube api...
cups-filters 'omit_shellescapes' OS Injection Vulnerability
Apple CUPS is an open source printing system for OS X and Unix-like systems. cups-filters is a package that provides CUPS filters. The cups-filters 'omitshellescapes' function fails to adequately filter input, allowing remote attackers to exploit the vulnerability to inject and execute arbitrary...
CVE-2006-5544
Visual truncation vulnerability in Microsoft Internet Explorer 7 allows remote attackers to spoof the address bar and possibly conduct phishing attacks via a malicious URL containing non-breaking spaces %A0, which causes the address bar to omit some characters from the URL...