VulnerableCode Package Details - pkg:deb/ubuntu/node-jquery@2.2.4%2Bdfsg-3

Search for packages

Package details: pkg:deb/ubuntu/node-jquery@2.2.4%2Bdfsg-3

Essentials
History (0)

purl	pkg:deb/ubuntu/node-jquery@2.2.4%2Bdfsg-3

Next non-vulnerable version	2.2.4+dfsg-4
Latest non-vulnerable version	2.2.4+dfsg-4
Risk	10.0

Vulnerabilities affecting this package (1)

Vulnerability	Summary	Fixed by
VCID-tv97-anfg-aaam Aliases: CVE-2019-11358 GHSA-6c3j-c64m-qhgq	jQuery before 3.4.0, as used in Drupal, Backdrop CMS, and other products, mishandles jQuery.extend(true, {}, ...) because of Object.prototype pollution. If an unsanitized source object contained an enumerable __proto__ property, it could extend the native Object.prototype.	2.2.4+dfsg-4 Affected by 0 other vulnerabilities.

Vulnerabilities fixed by this package (0)

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version