GitHub

Security issues raised by lodash-es #7345

mermaid-11.12.1.tgz->parser-0.6.3.tgz->langium-3.3.1.tgz->chevrotain-allstar-0.3.1.tgz->lodash-es-4.17.21.tgz mermaid-11.12.1.tgz->dagre-d3-es-7.0.13.tgz->lodash-es-4 ...
GitHub

CVE-2025-13465 (Critical) detected in multiple libraries

Lodash versions 4.0.0 through 4.17.22 are vulnerable to prototype pollution in the _.unset and _.omit functions. An attacker can pass crafted paths which cause Lodash to delete methods from global ...