Search for packages
| purl | pkg:npm/jQuery@1.6.2 |
| Next non-vulnerable version | None. |
| Latest non-vulnerable version | None. |
| Risk | 10.0 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-bm85-uen1-aaab
Aliases: CVE-2019-5428 GHSA-wv67-q8rr-grjp |
** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2019-11358. Reason: This candidate is a duplicate of CVE-2019-11358. Notes: All CVE users should reference CVE-2019-11358 instead of this candidate. All references and descriptions in this candidate have been removed to prevent accidental usage. |
Affected by 0 other vulnerabilities. |
|
VCID-tv97-anfg-aaam
Aliases: CVE-2019-11358 GHSA-6c3j-c64m-qhgq |
jQuery before 3.4.0, as used in Drupal, Backdrop CMS, and other products, mishandles jQuery.extend(true, {}, ...) because of Object.prototype pollution. If an unsanitized source object contained an enumerable __proto__ property, it could extend the native Object.prototype. |
Affected by 0 other vulnerabilities. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| This package is not known to fix vulnerabilities. | ||
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2024-10-11T08:36:30.138573+00:00 | Npm Importer | Affected by | VCID-bm85-uen1-aaab | https://github.com/nodejs/security-wg/blob/main/vuln/npm/496.json | 34.0.2 |
| 2024-10-11T08:36:25.707735+00:00 | Npm Importer | Affected by | VCID-tv97-anfg-aaam | https://github.com/nodejs/security-wg/blob/main/vuln/npm/496.json | 34.0.2 |
| 2024-09-20T08:18:28.583652+00:00 | Npm Importer | Affected by | VCID-bm85-uen1-aaab | https://github.com/nodejs/security-wg/blob/main/vuln/npm/496.json | 34.0.1 |
| 2024-09-20T08:18:24.667519+00:00 | Npm Importer | Affected by | VCID-tv97-anfg-aaam | https://github.com/nodejs/security-wg/blob/main/vuln/npm/496.json | 34.0.1 |
| 2024-04-26T06:02:00.440727+00:00 | Npm Importer | Affected by | VCID-bm85-uen1-aaab | https://github.com/nodejs/security-wg/blob/main/vuln/npm/496.json | 34.0.0rc4 |
| 2024-04-26T06:02:00.274055+00:00 | Npm Importer | Affected by | VCID-bm85-uen1-aaab | None | 34.0.0rc4 |
| 2024-04-26T06:01:54.336957+00:00 | Npm Importer | Affected by | VCID-tv97-anfg-aaam | https://github.com/nodejs/security-wg/blob/main/vuln/npm/496.json | 34.0.0rc4 |
| 2024-04-26T06:01:54.210581+00:00 | Npm Importer | Affected by | VCID-tv97-anfg-aaam | None | 34.0.0rc4 |
| 2024-01-12T14:19:19.346185+00:00 | Npm Importer | Affected by | VCID-bm85-uen1-aaab | https://github.com/nodejs/security-wg/blob/main/vuln/npm/496.json | 34.0.0rc2 |
| 2024-01-12T14:19:19.032810+00:00 | Npm Importer | Affected by | VCID-bm85-uen1-aaab | None | 34.0.0rc2 |
| 2024-01-12T14:19:09.708727+00:00 | Npm Importer | Affected by | VCID-tv97-anfg-aaam | https://github.com/nodejs/security-wg/blob/main/vuln/npm/496.json | 34.0.0rc2 |
| 2024-01-12T14:19:08.906509+00:00 | Npm Importer | Affected by | VCID-tv97-anfg-aaam | None | 34.0.0rc2 |
| 2024-01-05T09:59:45.932597+00:00 | Npm Importer | Affected by | VCID-bm85-uen1-aaab | https://github.com/nodejs/security-wg/blob/main/vuln/npm/496.json | 34.0.0rc1 |
| 2024-01-05T09:59:45.100793+00:00 | Npm Importer | Affected by | VCID-bm85-uen1-aaab | None | 34.0.0rc1 |
| 2024-01-05T09:59:34.734827+00:00 | Npm Importer | Affected by | VCID-tv97-anfg-aaam | https://github.com/nodejs/security-wg/blob/main/vuln/npm/496.json | 34.0.0rc1 |
| 2024-01-05T09:59:34.428340+00:00 | Npm Importer | Affected by | VCID-tv97-anfg-aaam | None | 34.0.0rc1 |