lodahs

Releases1

Frequency

Last Release over 6 years ago

security holding package

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2019-19771 ↗	Dec 12, 2019Thursday, 12 December 2019, 20:15	8.8 HIGH	9.3 HIGH
The lodahs package 0.0.1 for Node.js is a Trojan horse, and may have been installed by persons who mistyped the lodash package name. In particular, the Trojan horse finds and exfiltrates cryptocurrency wallets.