XSS in jQuery as used in Drupal, Backdrop CMS, and other products
Moderate severity
GitHub Reviewed
Published
Apr 26, 2019
to the GitHub Advisory Database
•
Updated Apr 22, 2024
Description
Published by the National Vulnerability Database
Apr 20, 2019
Reviewed
Apr 26, 2019
Published to the GitHub Advisory Database
Apr 26, 2019
Last updated
Apr 22, 2024
jQuery from 1.1.4 until 3.4.0, as used in Drupal, Backdrop CMS, and other products, mishandles
jQuery.extend(true, {}, ...)
because ofObject.prototype
pollution. If an unsanitized source object contained an enumerable__proto__
property, it could extend the nativeObject.prototype
.References