Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nodejsAsgerfNODEJS:796
HistoryApr 02, 2019 - 9:06 p.m.

Prototype Pollution

2019-04-0221:06:11
asgerf
www.npmjs.com
63
JSON

Overview

Versions of jquery prior to 3.4.0 are vulnerable to Prototype Pollution. The extend() method allows an attacker to modify the prototype for Object causing changes in properties that will exist on all objects.

Recommendation

Upgrade to version 3.4.0 or later.

References

CPENameOperatorVersion
jquerylt3.4.0

Related

ibm 2
github 1
cve 1
githubexploit 2
openvas 1
kitploit 1
oracle 1
ibm
ibm
Security Bulletin: Secure Gateway is affected by a Denial of Service vulnerability (CVE-2019-5428)
2019-07-29 18:44:19
Security Bulletin: Potential denial of service vulnerability in IBM Decision Optimization for Watson Studio Local
2019-06-17 16:45:01
github
github
Duplicate Advisory: Prototype Pollution in jquery
2019-04-23 15:59:10
cve
cve
CVE-2019-5428
2019-04-22 21:29:00
githubexploit
githubexploit
Exploit for Cross-site Scripting in Jquery
2019-03-30 10:03:36
Exploit for Cross-site Scripting in Jquery
2020-04-14 19:12:01
openvas
openvas
jQuery < 3.4.0 Object Extensions Vulnerability
2019-04-25 00:00:00
kitploit
kitploit
Trivy - A Simple And Comprehensive Vulnerability Scanner For Containers, Suitable For CI
2019-11-05 12:00:00
oracle
oracle
Oracle Critical Patch Update Advisory - April 2021
2021-04-20 00:00:00
JSON
Related for NODEJS:796
ibm2github1cve1githubexploit2openvas1kitploit1oracle1