Details
-
Bug
-
Status: Closed
-
Minor
-
Resolution: Fixed
-
webconsole-4.3.16
Description
jQuery prior to version 3.4.0 was vulnerable to prototype pollution (https://snyk.io/test/npm/jquery/3.3.1). The webconsole currently uses jQuery 3.3.1. jQuery >= 3.4.0 addresses this issues (https://blog.jquery.com/2019/04/10/jquery-3-4-0-released/). I'd propose upgrading to jQuery 3.4.1 and jQuery migrate from 3.0.0 to 3.1.0 to address this issue.