backdropcms backdrop CVE-2019-11358 vulnerability in Backdropcms and Other Products
Published on April 20, 2019

product logo product logo product logo product logo product logo product logo product logo product logo product logo product logo product logo product logo
jQuery before 3.4.0, as used in Drupal, Backdrop CMS, and other products, mishandles jQuery.extend(true, {}, ...) because of Object.prototype pollution. If an unsanitized source object contained an enumerable __proto__ property, it could extend the native Object.prototype.

Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory NVD


Products Associated with CVE-2019-11358

You can be notified by email with stack.watch whenever vulnerabilities like CVE-2019-11358 are published in these products:

Backdropcms Backdrop
 
Drupal
 
jQuery
 
NetApp Oncommand System Manager
 
NetApp Snapcenter
 
OpenSuse Backports Sle
 
Oracle Agile Product Lifecycle Management Process
 
Oracle Application Express
 
Oracle Application Testing Suite
 
Oracle Banking Digital Experience
 
Oracle Bi Publisher
 
Oracle Business Process Management Suite
 
Oracle Communications Billing Revenue Management
 
Oracle Communications Operations Monitor
 
Oracle Communications Unified Inventory Management
 
Oracle Communications Webrtc Session Controller
 
Oracle Enterprise Manager Ops Center
 
Oracle Financial Services Analytical Applications Infrastructure
 
Oracle Financial Services Asset Liability Management
 
Oracle Financial Services Balance Sheet Planning
 
Oracle Financial Services Data Foundation
 
Oracle Financial Services Data Integration Hub
 
Oracle Financial Services Funds Transfer Pricing
 
Oracle Financial Services Hedge Management Ifrs Valuations
 
Oracle Financial Services Liquidity Risk Management
 
Oracle Financial Services Loan Loss Forecasting Provisioning
 
Oracle Financial Services Market Risk Measurement Management
 
Oracle Financial Services Profitability Management
 
Oracle Fusion Middleware Mapviewer
 
Oracle Healthcare Translational Research
 
Oracle Hospitality Guest Access
 
Oracle Hospitality Materials Control
 
Oracle Jdeveloper
 
Oracle Jd Edwards Enterpriseone Tools
 
Oracle Knowledge
 
Oracle Peoplesoft Enterprise Peopletools
 
Oracle Policy Automation
 
Oracle Policy Automation Connector Siebel
 
Oracle Primavera Unifier
 
Oracle Rest Data Services
 
Oracle Retail Back Office
 
Oracle Retail Central Office
 
Oracle Retail Customer Insights
 
Oracle Retail Customer Management Segmentation Foundation
 
Oracle Retail Point Of Service
 
Oracle Retail Returns Management
 
Oracle Service Bus
 
Oracle Webcenter Sites
 
Oracle Weblogic Server
 
Red Hat Cloudforms
 
Red Hat Virtualization Manager
 
Debian Linux
 
Fedora Project Fedora
 
OpenSuse Leap
 
Oracle Application Service Level Management
 
Oracle Communications Application Session Controller
 
Oracle Communications Diameter Signaling Router
 
Oracle Banking Enterprise Collections
 
Oracle Banking Platform
 
Oracle Communications Analytics
 
Oracle Big Data Discovery
 
Oracle Communications Element Manager
 
Oracle Financial Services Data Governance Us Regulatory Reporting
 
Oracle Financial Services Basel Regulatory Capital Internal Ratings Based Approach
 
Oracle Financial Services Institutional Performance Analytics
 
Oracle Financial Services Basel Regulatory Capital Basic
 
Oracle Financial Services Analytical Applications Reconciliation Framework
 
Oracle Enterprise Session Border Controller
 
Oracle Communications Session Report Manager
 
Oracle Communications Session Route Manager
 
Oracle Financial Services Enterprise Financial Performance Analytics
 
Oracle Diagnostic Assistant
 
Oracle Communications Interactive Session Recorder
 
Oracle Financial Services Liquidity Risk Measurement Management
 
Oracle Healthcare Foundation
 
Oracle Hospitality Simphony
 
Oracle Insurance Insbridge Rating Underwriting
 
Oracle Insurance Allocation Manager Enterprise Profitability
 
Oracle Insurance Accounting Analyzer
 
Oracle Primavera Gateway
 
Oracle Financial Services Regulatory Reporting De Nederlandsche Bank
 
Oracle Jdeveloper And Adf
 
Oracle Financial Services Retail Performance Analytics
 
Oracle Policy Automation Mobile Devices
 
Oracle Real Time Scheduler
 
Oracle Insurance Performance Insight
 
Oracle Insurance Ifrs 17 Analyzer
 
Oracle Financial Services Revenue Management Billing
 
Oracle Financial Services Regulatory Reporting European Banking Authority
 
Oracle Insurance Data Foundation
 
Oracle Financial Services Retail Customer Analytics
 
Oracle Financial Services Regulatory Reporting Us Federal Reserve
 
Oracle Financial Services Price Creation Discovery
 
Oracle Siebel Ui Framework
 
Oracle Transportation Management
 
Oracle Storagetek Tape Analytics Sw Tool
 
Oracle Siebel Mobile Applications
 
Oracle Utilities Mobile Workforce Management
 
Oracle Tape Library Acsls
 
Oracle System Utilities
 
Oracle Identity Manager
 
Joomla
 
Oracle Communications Eagle Application Processor
 
Oracle Communications Services Gatekeeper
 
Juniper Networks Junos
 
Canonical Ubuntu Linux
 

Exploit Probability

EPSS
0.84%
Percentile
74.34%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.