Skip to content

[MEDIUM] [Security] Vulnerable Dependency: Lodash 4.17.21 #176

New issue
New issue
Open
Open
[MEDIUM] [Security] Vulnerable Dependency: Lodash 4.17.21#176
Labels
bugSomething isn't working
@bigtcze

Description

@bigtcze
bigtcze
opened on Jan 22, 2026

Severity: Medium
Description: Both backend and frontend use lodash@4.17.21 which is vulnerable to Prototype Pollution (GHSA-xxjr-mmjv-4gpg).
Complexity: 2
Permalink: https://github.com/bigtcze/noteer/blob/main/backend/package.json#L13

Metadata

Metadata

Assignees

No one assigned

    Labels

    bugSomething isn't working

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions