VulnerableCode Package Details - pkg:nuget/jquery@3.4.0

Search for packages

Package details: pkg:nuget/jquery@3.4.0

Essentials
History (1)

purl	pkg:nuget/jquery@3.4.0

Vulnerabilities affecting this package (0)

Vulnerability	Summary	Fixed by
This package is not known to be affected by vulnerabilities.

Vulnerabilities fixed by this package (1)

Vulnerability	Summary	Aliases
VCID-2x8d-vwaz-xydt	Duplicate Advisory: Prototype Pollution in jquery ## Duplicate Advisory This advisory is a duplicate of [GHSA-6c3j-c64m-qhgq](https://github.com/advisories/GHSA-6c3j-c64m-qhgq). This link is maintained to preserve external references. ## Original Description Versions of `jquery` prior to 3.4.0 are vulnerable to Prototype Pollution. The extend() method allows an attacker to modify the prototype for `Object` causing changes in properties that will exist on all objects. ## Recommendation Upgrade to version 3.4.0 or later.	CVE-2019-5428 GHSA-wv67-q8rr-grjp

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2025-07-01T12:21:43.181831+00:00	GithubOSV Importer	Fixing	VCID-2x8d-vwaz-xydt	https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2019/04/GHSA-wv67-q8rr-grjp/GHSA-wv67-q8rr-grjp.json	36.1.3