Search for packages
| purl | pkg:npm/jQuery@1.7.2 |
| Next non-vulnerable version | None. |
| Latest non-vulnerable version | None. |
| Risk | 10.0 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-bm85-uen1-aaab
Aliases: CVE-2019-5428 GHSA-wv67-q8rr-grjp |
** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2019-11358. Reason: This candidate is a duplicate of CVE-2019-11358. Notes: All CVE users should reference CVE-2019-11358 instead of this candidate. All references and descriptions in this candidate have been removed to prevent accidental usage. |
Affected by 0 other vulnerabilities. |
|
VCID-tv97-anfg-aaam
Aliases: CVE-2019-11358 GHSA-6c3j-c64m-qhgq |
jQuery before 3.4.0, as used in Drupal, Backdrop CMS, and other products, mishandles jQuery.extend(true, {}, ...) because of Object.prototype pollution. If an unsanitized source object contained an enumerable __proto__ property, it could extend the native Object.prototype. |
Affected by 0 other vulnerabilities. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| This package is not known to fix vulnerabilities. | ||
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2024-10-11T08:36:30.148315+00:00 | Npm Importer | Affected by | VCID-bm85-uen1-aaab | https://github.com/nodejs/security-wg/blob/main/vuln/npm/496.json | 34.0.2 |
| 2024-10-11T08:36:25.717566+00:00 | Npm Importer | Affected by | VCID-tv97-anfg-aaam | https://github.com/nodejs/security-wg/blob/main/vuln/npm/496.json | 34.0.2 |
| 2024-09-20T08:18:28.593281+00:00 | Npm Importer | Affected by | VCID-bm85-uen1-aaab | https://github.com/nodejs/security-wg/blob/main/vuln/npm/496.json | 34.0.1 |
| 2024-09-20T08:18:24.677699+00:00 | Npm Importer | Affected by | VCID-tv97-anfg-aaam | https://github.com/nodejs/security-wg/blob/main/vuln/npm/496.json | 34.0.1 |
| 2024-04-26T06:02:00.450167+00:00 | Npm Importer | Affected by | VCID-bm85-uen1-aaab | https://github.com/nodejs/security-wg/blob/main/vuln/npm/496.json | 34.0.0rc4 |
| 2024-04-26T06:02:00.283346+00:00 | Npm Importer | Affected by | VCID-bm85-uen1-aaab | None | 34.0.0rc4 |
| 2024-04-26T06:01:54.346216+00:00 | Npm Importer | Affected by | VCID-tv97-anfg-aaam | https://github.com/nodejs/security-wg/blob/main/vuln/npm/496.json | 34.0.0rc4 |
| 2024-04-26T06:01:54.219917+00:00 | Npm Importer | Affected by | VCID-tv97-anfg-aaam | None | 34.0.0rc4 |
| 2024-01-12T14:19:19.356220+00:00 | Npm Importer | Affected by | VCID-bm85-uen1-aaab | https://github.com/nodejs/security-wg/blob/main/vuln/npm/496.json | 34.0.0rc2 |
| 2024-01-12T14:19:19.042421+00:00 | Npm Importer | Affected by | VCID-bm85-uen1-aaab | None | 34.0.0rc2 |
| 2024-01-12T14:19:09.718161+00:00 | Npm Importer | Affected by | VCID-tv97-anfg-aaam | https://github.com/nodejs/security-wg/blob/main/vuln/npm/496.json | 34.0.0rc2 |
| 2024-01-12T14:19:08.918065+00:00 | Npm Importer | Affected by | VCID-tv97-anfg-aaam | None | 34.0.0rc2 |
| 2024-01-05T09:59:45.942128+00:00 | Npm Importer | Affected by | VCID-bm85-uen1-aaab | https://github.com/nodejs/security-wg/blob/main/vuln/npm/496.json | 34.0.0rc1 |
| 2024-01-05T09:59:45.110236+00:00 | Npm Importer | Affected by | VCID-bm85-uen1-aaab | None | 34.0.0rc1 |
| 2024-01-05T09:59:34.744309+00:00 | Npm Importer | Affected by | VCID-tv97-anfg-aaam | https://github.com/nodejs/security-wg/blob/main/vuln/npm/496.json | 34.0.0rc1 |
| 2024-01-05T09:59:34.437646+00:00 | Npm Importer | Affected by | VCID-tv97-anfg-aaam | None | 34.0.0rc1 |