Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
githubGitHub Advisory DatabaseGHSA-WV67-Q8RR-GRJP
HistoryApr 23, 2019 - 3:59 p.m.

Duplicate Advisory: Prototype Pollution in jquery

2019-04-2315:59:10
GitHub Advisory Database
github.com
463

0.002 Low

EPSS

Percentile

63.8%

JSON

Duplicate Advisory

This advisory is a duplicate of GHSA-6c3j-c64m-qhgq. This link is maintained to preserve external references.

Original Description

Versions of jquery prior to 3.4.0 are vulnerable to Prototype Pollution. The extend() method allows an attacker to modify the prototype for Object causing changes in properties that will exist on all objects.

Recommendation

Upgrade to version 3.4.0 or later.

Related

ibm 2
nodejs 1
cve 1
githubexploit 2
openvas 1
kitploit 1
oracle 1
ibm
ibm
Security Bulletin: Secure Gateway is affected by a Denial of Service vulnerability (CVE-2019-5428)
2019-07-29 18:44:19
Security Bulletin: Potential denial of service vulnerability in IBM Decision Optimization for Watson Studio Local
2019-06-17 16:45:01
nodejs
nodejs
Prototype Pollution
2019-04-02 21:06:11
cve
cve
CVE-2019-5428
2019-04-22 21:29:00
githubexploit
githubexploit
Exploit for Cross-site Scripting in Jquery
2019-03-30 10:03:36
Exploit for Cross-site Scripting in Jquery
2020-04-14 19:12:01
openvas
openvas
jQuery < 3.4.0 Object Extensions Vulnerability
2019-04-25 00:00:00
kitploit
kitploit
Trivy - A Simple And Comprehensive Vulnerability Scanner For Containers, Suitable For CI
2019-11-05 12:00:00
oracle
oracle
Oracle Critical Patch Update Advisory - April 2021
2021-04-20 00:00:00

0.002 Low

EPSS

Percentile

63.8%

JSON
Related for GHSA-WV67-Q8RR-GRJP
ibm2nodejs1cve1githubexploit2openvas1kitploit1oracle1