Django - (bulletinoct2019)ID: oval:org.secpod.oval:def:2105209 | Date: (C)2020-01-19 (M)2024-04-17 |
Class: PATCH | Family: unix |
jQuery before 3.4.0, as used in Drupal, Backdrop CMS, and other products, mishandles jQuery.extend(true, {}, ...) because of Object.prototype pollution. If an unsanitized source object contained an enumerable __proto__ property, it could extend the native Object.prototype.
Product: |
library/python/django |
library/python/django-37 |
library/python/django-35 |
library/python/django-34 |
library/python/django-27 |