This advisory is a duplicate of GHSA-6c3j-c64m-qhgq. This link is maintained to preserve external references.
Versions of jquery
prior to 3.4.0 are vulnerable to Prototype Pollution. The extend() method allows an attacker to modify the prototype for Object
causing changes in properties that will exist on all objects.
Upgrade to version 3.4.0 or later.
CPE | Name | Operator | Version |
---|---|---|---|
jquery-rails | lt | 3.4.0 | |
org.webjars.npm:jquery | lt | 3.4.0 | |
jquery | lt | 3.4.0 | |
jquery | lt | 3.4.0 |