Lucene search
TenableCVELIST:CVE-2021-20083HistoryApr 23, 2021 - 6:47 p.m.
CVE-2021-20083
2021-04-2318:47:42
tenable
www.cve.org
Improperly Controlled Modification of Object Prototype Attributes (‘Prototype Pollution’) in jquery-plugin-query-object 2.2.3 allows a malicious user to inject properties into Object.prototype.
CNA Affected
[
{
"product": "jquery-plugin-query-object",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "2.2.3"
}
]
}
]References
packetstormsecurity.com/files/166299/WordPress-Core-5.9.0-5.9.1-Cross-Site-Scripting.html
github.com/BlackFan/client-side-prototype-pollution/blob/master/pp/jquery-query-object.md
lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/7CR6VGITIB2TXXZ6B5QRRWPU5S4BXQPD/
lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IJX6NVXSRN3RX3YUVEJQ4WUTQSDL3DSR/
Related
osv
osv
CVE-2021-20083
2021-04-23 19:15:09
jquery-plugin-query-object contains prototype pollution vulnerability
2022-05-24 17:48:43
prion
prion
Buffer overflow
2021-04-23 19:15:00
openvas
openvas
WordPress Multiple Vulnerabilities (Mar 2022) - Linux
2022-03-14 00:00:00
WordPress Multiple Vulnerabilities (Mar 2022) - Windows
2022-03-14 00:00:00
Fedora: Security Advisory for wordpress (FEDORA-2022-956b6078fb)
2022-03-23 00:00:00
github
github
jquery-plugin-query-object contains prototype pollution vulnerability
2022-05-24 17:48:43
nvd
nvd
CVE-2021-20083
2021-04-23 19:15:09
zdt
zdt
WordPress Core 5.9.0 / 5.9.1 Cross Site Scripting Vulnerability
2022-03-15 00:00:00
veracode
veracode
Prototype Pollution
2021-04-26 05:54:21
wordfence
wordfence
cve
cve
CVE-2021-20083
2021-04-23 19:15:09
fedora
fedora
[SECURITY] Fedora 35 Update: wordpress-5.9.2-1.fc35
2022-03-18 20:08:15
[SECURITY] Fedora 36 Update: wordpress-5.9.2-1.fc36
2022-03-26 15:47:44
hivepro
hivepro
Weekly Threat Digest: 14 – 20 March 2022
2022-03-23 04:17:40