RSS   Vulnerabilities for 'Lodahs'   RSS

2019-12-12
 
CVE-2019-19771

CWE-20
 

 
The lodahs package 0.0.1 for Node.js is a Trojan horse, and may have been installed by persons who mistyped the lodash package name. In particular, the Trojan horse finds and exfiltrates cryptocurrency wallets.

 


Copyright 2024, cxsecurity.com

 

Back to Top