Description
jQuery before 3.4.0, as used in Drupal, Backdrop CMS, and other products, mishandles jQuery.extend(true, {}, ...) because of Object.prototype pollution. If an unsanitized source object contained an enumerable __proto__ property, it could extend the native Object.prototype.
Remediation
References
Related Vulnerabilities
Moodle Improper Access Control Vulnerability (CVE-2020-25629)
MySQL CVE-2019-2752 Vulnerability (CVE-2019-2752)
Ruby CVE-2019-15845 Vulnerability (CVE-2019-15845)
PHP Improper Input Validation Vulnerability (CVE-2007-4887)
Apache Traffic Server Improper Input Validation Vulnerability (CVE-2021-41585)