Search for packages
| purl | pkg:npm/jQuery@1.6.3 |
| Next non-vulnerable version | None. |
| Latest non-vulnerable version | None. |
| Risk | 10.0 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-bm85-uen1-aaab
Aliases: CVE-2019-5428 GHSA-wv67-q8rr-grjp |
** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2019-11358. Reason: This candidate is a duplicate of CVE-2019-11358. Notes: All CVE users should reference CVE-2019-11358 instead of this candidate. All references and descriptions in this candidate have been removed to prevent accidental usage. |
Affected by 0 other vulnerabilities. |
|
VCID-tv97-anfg-aaam
Aliases: CVE-2019-11358 GHSA-6c3j-c64m-qhgq |
jQuery before 3.4.0, as used in Drupal, Backdrop CMS, and other products, mishandles jQuery.extend(true, {}, ...) because of Object.prototype pollution. If an unsanitized source object contained an enumerable __proto__ property, it could extend the native Object.prototype. |
Affected by 0 other vulnerabilities. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| This package is not known to fix vulnerabilities. | ||
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2024-10-11T08:36:30.143431+00:00 | Npm Importer | Affected by | VCID-bm85-uen1-aaab | https://github.com/nodejs/security-wg/blob/main/vuln/npm/496.json | 34.0.2 |
| 2024-10-11T08:36:25.712740+00:00 | Npm Importer | Affected by | VCID-tv97-anfg-aaam | https://github.com/nodejs/security-wg/blob/main/vuln/npm/496.json | 34.0.2 |
| 2024-09-20T08:18:28.588536+00:00 | Npm Importer | Affected by | VCID-bm85-uen1-aaab | https://github.com/nodejs/security-wg/blob/main/vuln/npm/496.json | 34.0.1 |
| 2024-09-20T08:18:24.672719+00:00 | Npm Importer | Affected by | VCID-tv97-anfg-aaam | https://github.com/nodejs/security-wg/blob/main/vuln/npm/496.json | 34.0.1 |
| 2024-04-26T06:02:00.445494+00:00 | Npm Importer | Affected by | VCID-bm85-uen1-aaab | https://github.com/nodejs/security-wg/blob/main/vuln/npm/496.json | 34.0.0rc4 |
| 2024-04-26T06:02:00.278774+00:00 | Npm Importer | Affected by | VCID-bm85-uen1-aaab | None | 34.0.0rc4 |
| 2024-04-26T06:01:54.341719+00:00 | Npm Importer | Affected by | VCID-tv97-anfg-aaam | https://github.com/nodejs/security-wg/blob/main/vuln/npm/496.json | 34.0.0rc4 |
| 2024-04-26T06:01:54.215240+00:00 | Npm Importer | Affected by | VCID-tv97-anfg-aaam | None | 34.0.0rc4 |
| 2024-01-12T14:19:19.351271+00:00 | Npm Importer | Affected by | VCID-bm85-uen1-aaab | https://github.com/nodejs/security-wg/blob/main/vuln/npm/496.json | 34.0.0rc2 |
| 2024-01-12T14:19:19.037764+00:00 | Npm Importer | Affected by | VCID-bm85-uen1-aaab | None | 34.0.0rc2 |
| 2024-01-12T14:19:09.713542+00:00 | Npm Importer | Affected by | VCID-tv97-anfg-aaam | https://github.com/nodejs/security-wg/blob/main/vuln/npm/496.json | 34.0.0rc2 |
| 2024-01-12T14:19:08.912966+00:00 | Npm Importer | Affected by | VCID-tv97-anfg-aaam | None | 34.0.0rc2 |
| 2024-01-05T09:59:45.937534+00:00 | Npm Importer | Affected by | VCID-bm85-uen1-aaab | https://github.com/nodejs/security-wg/blob/main/vuln/npm/496.json | 34.0.0rc1 |
| 2024-01-05T09:59:45.105630+00:00 | Npm Importer | Affected by | VCID-bm85-uen1-aaab | None | 34.0.0rc1 |
| 2024-01-05T09:59:34.739568+00:00 | Npm Importer | Affected by | VCID-tv97-anfg-aaam | https://github.com/nodejs/security-wg/blob/main/vuln/npm/496.json | 34.0.0rc1 |
| 2024-01-05T09:59:34.433000+00:00 | Npm Importer | Affected by | VCID-tv97-anfg-aaam | None | 34.0.0rc1 |