Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in

CVE-2020-11022

🗓️ 29 Apr 2020 00:00:00Reported by GitHub_MType 
cve
 cve🔗 web.nvd.nist.gov📰️ 13 Media mentions👁 7229 Views

In jQuery v>=1.2 & v<3.5.0, passing HTML from untrusted sources may execute untrusted code

Related
Detection
Affected
Refs
Social
ReporterTitlePublishedViews
Family
IBM Security Bulletins		Security Bulletin: Multiple vulnerabilities fixed in IBM Security Verify Governance
11 Jan 202416:41
ibm
IBM Security Bulletins		Security Bulletin: IBM Spectrum Symphony provides upgraded software packages to address known CVEs
31 Jan 202402:01
ibm
IBM Security Bulletins		Security Bulletin: Vulnerabilities Addressed in IBM Tivoli Network Manager IP Edition (ITNM) version 4.2 Fix Pack 20 (4.2.0.20)
11 Nov 202411:31
ibm
IBM Security Bulletins		Security Bulletin: Vulnerabilities in Apache Ant affect IBM Operations Analytics - Log Analysis (CVE-2020-11023, CVE-2020-23064, CVE-2020-11022)
6 Sep 202408:33
ibm
IBM Security Bulletins		Security Bulletin: IBM CICS TX Advanced is vulnerable to multiple vulnerabilities in jQuery.
14 Feb 202321:04
ibm
IBM Security Bulletins		Security Bulletin: Multiple vulnerabilities in IBM WebSphere eXtreme Scale Liberty Deployment.
21 Mar 202318:07
ibm
IBM Security Bulletins		Security Bulletin: IBM Cognos Command Center is affected by multiple vulnerabilities
4 May 202320:23
ibm
IBM Security Bulletins		Security Bulletin: Vulnerabilities in jQuery affect watsonx.data
30 Jan 202511:08
ibm
IBM Security Bulletins		Security Bulletin: Vulnerabilities in jQuery, Moment, Jackson-mapper-asl and Red Hat JBoss Enterprise Application Platform might affect IBM Storage Defender Copy Data Management.
16 May 202519:26
ibm
IBM Security Bulletins		Security Bulletin: IBM InfoSphere Information Server is affected by multiple vulnerabilities in JQuery, Node.js and Swagger UI
17 May 202319:40
ibm
Rows per page
NVD
Vulners
Node
jqueryjqueryRange1.23.5.0
Node
drupaldrupalRange7.07.70
OR
drupaldrupalRange8.7.08.7.14
OR
drupaldrupalRange8.8.08.8.6
Node
debiandebian_linuxMatch9.0
Node
fedoraprojectfedoraMatch31
OR
fedoraprojectfedoraMatch32
OR
fedoraprojectfedoraMatch33
Node
oracleagile_product_lifecycle_management_for_processMatch6.2.0.0
OR
oracleapplication_testing_suiteMatch13.3.0.1
OR
oraclebanking_digital_experienceMatch18.1
OR
oraclebanking_digital_experienceMatch18.2
OR
oraclebanking_digital_experienceMatch18.3
OR
oraclebanking_digital_experienceMatch19.1
OR
oraclebanking_digital_experienceMatch19.2
OR
oraclebanking_digital_experienceMatch20.1
OR
oracleblockchain_platformRange<21.1.2
OR
oraclecommunications_application_session_controllerMatch3.8m0
OR
oraclecommunications_billing_and_revenue_managementMatch7.5.0.23.0
OR
oraclecommunications_billing_and_revenue_managementMatch12.0.0.3.0
OR
oraclecommunications_diameter_signaling_router_idih:Range8.0.08.2.2
OR
oraclecommunications_eagle_application_processorRange16.1.016.4.0
OR
oraclecommunications_services_gatekeeperMatch7.0
OR
oraclecommunications_webrtc_session_controllerMatch7.2
OR
oracleenterprise_manager_ops_centerMatch12.4.0.0
OR
oracleenterprise_session_border_controllerMatch8.4
OR
oraclefinancial_services_analytical_applications_infrastructureRange8.0.6.0.08.1.0.0.0
OR
oraclefinancial_services_analytical_applications_reconciliation_frameworkRange8.0.68.0.8
OR
oraclefinancial_services_analytical_applications_reconciliation_frameworkMatch8.1.0
OR
oraclefinancial_services_asset_liability_managementMatch8.0.6
OR
oraclefinancial_services_asset_liability_managementMatch8.0.7
OR
oraclefinancial_services_asset_liability_managementMatch8.1.0
OR
oraclefinancial_services_balance_sheet_planningMatch8.0.8
OR
oraclefinancial_services_basel_regulatory_capital_basicRange8.0.68.0.8
OR
oraclefinancial_services_basel_regulatory_capital_basicMatch8.1.0
OR
oraclefinancial_services_basel_regulatory_capital_internal_ratings_based_approachRange8.0.68.0.8
OR
oraclefinancial_services_basel_regulatory_capital_internal_ratings_based_approachMatch8.1.0
OR
oraclefinancial_services_data_foundationRange8.0.68.1.0
OR
oraclefinancial_services_data_governance_for_us_regulatory_reportingRange8.0.68.0.9
OR
oraclefinancial_services_data_integration_hubMatch8.0.6
OR
oraclefinancial_services_data_integration_hubMatch8.0.7
OR
oraclefinancial_services_data_integration_hubMatch8.1.0
OR
oraclefinancial_services_funds_transfer_pricingMatch8.0.6
OR
oraclefinancial_services_funds_transfer_pricingMatch8.0.7
OR
oraclefinancial_services_funds_transfer_pricingMatch8.1.0
OR
oraclefinancial_services_hedge_management_and_ifrs_valuationsRange8.0.68.0.8
OR
oraclefinancial_services_hedge_management_and_ifrs_valuationsMatch8.1.0
OR
oraclefinancial_services_institutional_performance_analyticsMatch8.0.6
OR
oraclefinancial_services_institutional_performance_analyticsMatch8.0.7
OR
oraclefinancial_services_institutional_performance_analyticsMatch8.1.0
OR
oraclefinancial_services_liquidity_risk_managementMatch8.0.6
OR
oraclefinancial_services_liquidity_risk_measurement_and_managementMatch8.0.7
OR
oraclefinancial_services_liquidity_risk_measurement_and_managementMatch8.0.8
OR
oraclefinancial_services_liquidity_risk_measurement_and_managementMatch8.1.0
OR
oraclefinancial_services_loan_loss_forecasting_and_provisioningRange8.0.68.0.8
OR
oraclefinancial_services_loan_loss_forecasting_and_provisioningMatch8.1.0
OR
oraclefinancial_services_market_risk_measurement_and_managementMatch8.0.6
OR
oraclefinancial_services_market_risk_measurement_and_managementMatch8.0.8
OR
oraclefinancial_services_price_creation_and_discoveryMatch8.0.6
OR
oraclefinancial_services_price_creation_and_discoveryMatch8.0.7
OR
oraclefinancial_services_profitability_managementMatch8.0.6
OR
oraclefinancial_services_profitability_managementMatch8.0.7
OR
oraclefinancial_services_profitability_managementMatch8.1.0
OR
oraclefinancial_services_regulatory_reporting_for_european_banking_authorityRange8.0.68.1.0
OR
oraclefinancial_services_regulatory_reporting_for_us_federal_reserveRange8.0.68.0.9
OR
oraclehealthcare_foundationMatch7.1.1
OR
oraclehealthcare_foundationMatch7.2.0
OR
oraclehealthcare_foundationMatch7.2.1
OR
oraclehealthcare_foundationMatch7.3.0
OR
oraclehospitality_materials_controlMatch18.1
OR
oraclehospitality_simphonyRange19.1.019.1.2
OR
oraclehospitality_simphonyMatch18.1
OR
oraclehospitality_simphonyMatch18.2
OR
oracleinsurance_accounting_analyzerMatch8.0.9
OR
oracleinsurance_allocation_manager_for_enterprise_profitabilityMatch8.0.8
OR
oracleinsurance_allocation_manager_for_enterprise_profitabilityMatch8.1.0
OR
oracleinsurance_data_foundationRange8.0.68.1.0
OR
oracleinsurance_insbridge_rating_and_underwritingRange5.0.0.05.6.0.0
OR
oracleinsurance_insbridge_rating_and_underwritingMatch5.6.1.0
OR
oraclejdeveloperMatch11.1.1.9.0
OR
oraclejdeveloperMatch12.2.1.3.0
OR
oraclejdeveloperMatch12.2.1.4.0
OR
oraclepeoplesoft_enterprise_peopletoolsMatch8.56
OR
oraclepeoplesoft_enterprise_peopletoolsMatch8.57
OR
oraclepeoplesoft_enterprise_peopletoolsMatch8.58
OR
oraclepolicy_automationRange12.2.012.2.20
OR
oraclepolicy_automation_connector_for_siebelMatch10.4.6
OR
oraclepolicy_automation_for_mobile_devicesRange12.2.012.2.20
OR
oracleretail_back_officeMatch14.0
OR
oracleretail_back_officeMatch14.1
OR
oracleretail_customer_management_and_segmentation_foundationMatch19.0
OR
oracleretail_returns_managementMatch14.0
OR
oracleretail_returns_managementMatch14.1
OR
oraclesiebel_ui_frameworkMatch20.8
OR
oraclestoragetek_acslsMatch8.5.1
OR
oracleweblogic_serverMatch10.3.6.0.0
OR
oracleweblogic_serverMatch12.1.3.0.0
OR
oracleweblogic_serverMatch12.2.1.3.0
OR
oracleweblogic_serverMatch12.2.1.4.0
OR
oracleweblogic_serverMatch14.1.1.0.0
Node
netappmax_dataMatch-
OR
netapponcommand_insightMatch-
OR
netapponcommand_system_managerRange3.03.1.3
OR
netappsnap_creator_frameworkMatch-
OR
netappsnapcenterMatch-
Node
netapph300s_firmwareMatch-
AND
netapph300sMatch-
Node
netapph500s_firmwareMatch-
AND
netapph500sMatch-
Node
netapph700s_firmwareMatch-
AND
netapph700sMatch-
Node
netapph300e_firmwareMatch-
AND
netapph300eMatch-
Node
netapph500e_firmwareMatch-
AND
netapph500eMatch-
Node
netapph700e_firmwareMatch-
AND
netapph700eMatch-
Node
netapph410s_firmwareMatch-
AND
netapph410sMatch-
Node
netapph410c_firmwareMatch-
AND
netapph410cMatch-
Node
opensuseleapMatch15.1
OR
opensuseleapMatch15.2
Node
tenablelog_correlation_engineRange<6.0.9
Node
oracleagile_product_supplier_collaboration_for_processMatch6.2.0.0
OR
oraclebanking_digital_experienceRange18.120.1
OR
oraclecommunications_application_session_controllerMatch3.8m0
OR
oraclecommunications_billing_and_revenue_managementMatch7.5.0.23.0
OR
oraclecommunications_billing_and_revenue_managementMatch12.0.0.3.0
OR
oraclecommunications_diameter_signaling_router_idih:Range8.0.08.2.2
OR
oraclecommunications_webrtc_session_controllerMatch7.2
OR
oracleenterprise_manager_ops_centerMatch12.4.0.0
OR
oracleenterprise_session_border_controllerMatch8.4
OR
oraclefinancial_services_analytical_applications_infrastructureRange8.0.68.1.0
OR
oraclefinancial_services_analytical_applications_reconciliation_frameworkRange8.0.68.0.8
OR
oraclefinancial_services_analytical_applications_reconciliation_frameworkMatch8.1.0
OR
oraclefinancial_services_asset_liability_managementMatch8.0.6
OR
oraclefinancial_services_asset_liability_managementMatch8.0.7
OR
oraclefinancial_services_asset_liability_managementMatch8.1.0
OR
oraclefinancial_services_balance_sheet_planningMatch8.0.8
OR
oraclefinancial_services_basel_regulatory_capital_basicRange8.0.68.0.8
OR
oraclefinancial_services_basel_regulatory_capital_basicMatch8.1.0
OR
oraclefinancial_services_basel_regulatory_capital_internal_ratings_based_approachRange8.0.68.0.8
OR
oraclefinancial_services_basel_regulatory_capital_internal_ratings_based_approachMatch8.1.0
OR
oraclefinancial_services_data_foundationRange8.0.68.1.0
OR
oraclefinancial_services_data_governance_for_us_regulatory_reportingRange8.0.68.0.9
OR
oraclefinancial_services_data_integration_hubMatch8.0.6
OR
oraclefinancial_services_data_integration_hubMatch8.0.7
OR
oraclefinancial_services_data_integration_hubMatch8.1.0
OR
oraclefinancial_services_funds_transfer_pricingMatch8.0.6
OR
oraclefinancial_services_funds_transfer_pricingMatch8.0.7
OR
oraclefinancial_services_funds_transfer_pricingMatch8.1.0
OR
oraclefinancial_services_hedge_management_and_ifrs_valuationsRange8.0.68.0.8
OR
oraclefinancial_services_hedge_management_and_ifrs_valuationsMatch8.1.0
OR
oraclefinancial_services_institutional_performance_analyticsMatch8.0.6
OR
oraclefinancial_services_institutional_performance_analyticsMatch8.0.7
OR
oraclefinancial_services_institutional_performance_analyticsMatch8.1.0
OR
oraclefinancial_services_liquidity_risk_managementMatch8.0.6
OR
oraclefinancial_services_liquidity_risk_measurement_and_managementMatch8.0.7
OR
oraclefinancial_services_liquidity_risk_measurement_and_managementMatch8.0.8
OR
oraclefinancial_services_liquidity_risk_measurement_and_managementMatch8.1.0
OR
oraclefinancial_services_loan_loss_forecasting_and_provisioningRange8.0.68.0.8
OR
oraclefinancial_services_loan_loss_forecasting_and_provisioningMatch8.1.0
OR
oraclefinancial_services_market_risk_measurement_and_managementMatch8.0.6
OR
oraclefinancial_services_market_risk_measurement_and_managementMatch8.0.8
OR
oraclefinancial_services_price_creation_and_discoveryMatch8.0.6
OR
oraclefinancial_services_price_creation_and_discoveryMatch8.0.7
OR
oraclefinancial_services_profitability_managementMatch8.0.6
OR
oraclefinancial_services_profitability_managementMatch8.0.7
OR
oraclefinancial_services_profitability_managementMatch8.1.0
OR
oraclefinancial_services_regulatory_reporting_for_european_banking_authorityRange8.0.68.1.0
OR
oraclefinancial_services_regulatory_reporting_for_us_federal_reserveRange8.0.68.0.9
OR
oraclehealthcare_foundationMatch7.1.1
OR
oraclehealthcare_foundationMatch7.2.0
OR
oraclehealthcare_foundationMatch7.2.1
OR
oraclehealthcare_foundationMatch7.3.0
OR
oraclehospitality_materials_controlMatch18.1
OR
oraclehospitality_simphonyMatch18.1
OR
oraclehospitality_simphonyMatch18.2
OR
oraclehospitality_simphonyMatch19.1.0-19.1.2
OR
oracleinsurance_accounting_analyzerMatch8.0.9
OR
oracleinsurance_allocation_manager_for_enterprise_profitabilityMatch8.0.8
OR
oracleinsurance_allocation_manager_for_enterprise_profitabilityMatch8.1.0
OR
oracleinsurance_data_foundationMatch8.0.6-8.1.0
OR
oracleinsurance_insbridge_rating_and_underwritingRange5.0.0.05.6.0.0
OR
oracleinsurance_insbridge_rating_and_underwritingMatch5.6.1.0
OR
oraclejdeveloperMatch11.1.1.9.0
OR
oraclejdeveloperMatch12.2.1.3.0
OR
oraclejdeveloperMatch12.2.1.4.0
OR
oraclepeoplesoft_enterprise_peopletoolsMatch8.56
OR
oraclepeoplesoft_enterprise_peopletoolsMatch8.57
OR
oraclepeoplesoft_enterprise_peopletoolsMatch8.58
OR
oraclepolicy_automationRange12.2.012.2.20
OR
oraclepolicy_automation_connector_for_siebelMatch10.4.6
OR
oraclepolicy_automation_for_mobile_devicesRange12.2.012.2.20
OR
oracleretail_back_officeMatch14.0
OR
oracleretail_back_officeMatch14.1
OR
oracleretail_customer_management_and_segmentation_foundationMatch19.0
OR
oracleretail_returns_managementMatch14.0
OR
oracleretail_returns_managementMatch14.1
OR
oraclesiebel_ui_frameworkMatch20.8
OR
oracleweblogic_serverMatch10.3.6.0.0
OR
oracleweblogic_serverMatch12.1.3.0.0
OR
oracleweblogic_serverMatch12.2.1.3.0
OR
oracleweblogic_serverMatch12.2.1.4.0
OR
oracleweblogic_serverMatch14.1.1.0.0
[
  {
    "vendor": "jquery",
    "product": "jQuery",
    "versions": [
      {
        "version": ">= 1.12.0, < 3.5.0",
        "status": "affected"
      }
    ]
  }
]
SourceLink
tenablewww.tenable.com/security/tns-2021-10
listswww.lists.opensuse.org/opensuse-security-announce/2020-11/msg00039.html
githubwww.github.com/jquery/jquery/commit/1d61fd9407e6fbe82fe55cb0b938307aa0791f77
listswww.lists.debian.org/debian-lts-announce/2021/03/msg00033.html
listswww.lists.apache.org/thread.html/rbb448222ba62c430e21e13f940be4cb5cfc373cd3bce56b48c0ffa67@%3Cdev.flink.apache.org%3E
oraclewww.oracle.com/security-alerts/cpujul2020.html
githubwww.github.com/jquery/jquery/releases/tag/3.5.0
oraclewww.oracle.com/security-alerts/cpujan2021.html
listswww.lists.fedoraproject.org/archives/list/[email protected]/message/SAPQVX3XDNPGFT26QAQ6AJIXZZBZ4CD4
listswww.lists.apache.org/thread.html/r706cfbc098420f7113968cc377247ec3d1439bce42e679c11c609e2d@%3Cissues.flink.apache.org%3E
Rows per page
Rows per page

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

Book a live demo
13 Apr 2026 15:16Current
6.7Medium risk
Vulners AI Score6.7
CVSS 24.3
CVSS 3.16.1 - 6.9
EPSS0.02456
CWE-79In Wild
cve-2020-11022jquerydom manipulationhtmlsecurity vulnerabilitypatch
7229