Lucene search
ApacheCVELIST:CVE-2017-15719HistoryMar 12, 2018 - 1:00 p.m.
CVE-2017-15719
2018-03-1213:00:00
apache
www.cve.org
1
EPSS
0.001
Percentile
29.5%
In Wicket jQuery UI 6.28.0 and earlier, 7.9.1 and earlier, and 8.0.0-M8 and earlier, a security issue has been discovered in the WYSIWYG editor that allows an attacker to submit arbitrary JS code to WYSIWYG editor.
CNA Affected
[
{
"product": "Wicket jQuery UI",
"vendor": "Apache Software Foundation",
"versions": [
{
"status": "affected",
"version": "<= 6.28.0"
},
{
"status": "affected",
"version": "<= 7.9.1"
},
{
"status": "affected",
"version": "<= 8.0.0-M8"
}
]
}
]Related
osv
osv
Cross-site Scripting in wicket-jquery-ui
2022-05-14 00:58:28
CVE-2017-15719
2018-03-12 13:29:00
prion
prion
Design/Logic Flaw
2018-03-12 13:29:00
veracode
veracode
Cross-site Scripting (XSS)
2018-02-27 05:48:23
github
github
Cross-site Scripting in wicket-jquery-ui
2022-05-14 00:58:28
nvd
nvd
CVE-2017-15719
2018-03-12 13:29:00
cve
cve
CVE-2017-15719
2018-03-12 13:29:00