Lucene search

jQuery-UI vulnerable to Cross-site Scripting in dialog closeText

🗓️ 24 Oct 2017 18:35:33Reported by GitHub Advisory DatabaseType

github🔗 github.com👁 784 Views

jQuery-UI Cross-site Scripting Vulnerability in closeText paramete

Reporter	Title	Published	Views	Family All 74
Cvelist	CVE-2016-7103	15 Mar 201700:00	–	cvelist
Fedora	[SECURITY] Fedora 30 Update: rubygem-jquery-ui-rails-6.0.1-1.fc30	19 Jun 201922:46	–	fedora
Fedora	[SECURITY] Fedora 25 Update: python-XStatic-jquery-ui-1.12.0.1-4.fc25	22 Nov 201705:09	–	fedora
Fedora	[SECURITY] Fedora 26 Update: python-XStatic-jquery-ui-1.12.0.1-2.fc26	22 Nov 201702:32	–	fedora
Fedora	[SECURITY] Fedora 37 Update: drupal7-7.92-1.fc37	10 Nov 202222:46	–	fedora
Fedora	[SECURITY] Fedora 36 Update: drupal7-7.92-1.fc36	23 Oct 202209:04	–	fedora
Fedora	[SECURITY] Fedora 35 Update: drupal7-7.92-1.fc35	3 Nov 202215:31	–	fedora
IBM Security Bulletins	Security Bulletin: IBM Security Guardium Big Data Intelligence (SonarG) is affected by a Using Components with Known Vulnerabilities vulnerability	16 Jun 201822:07	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple vulnerabilities identified in jQuery-UI affects IBM Engineering Lifecycle Optimization - Publishing	4 Oct 202308:27	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Cognos Analytics has addressed multiple vulnerabilities	30 Jul 202013:47	–	ibm

Vulners

Node

jquery.ui.combinedRange<1.12.0

org.webjars.npm jquery\-uiRange<1.12.0

jquery\-ui\-railsRange<6.0.0

jquery\-uiRange<1.12.0

Source	Link
nvd	www.nvd.nist.gov/vuln/detail/CVE-2016-7103
github	www.github.com/jquery/jquery-ui/pull/1622
github	www.github.com/jquery/api.jqueryui.com/issues/281
github	www.github.com/jquery/jquery-ui/commit/9644e7bae9116edaf8d37c5b38cb32b892f10ff6
jqueryui	www.jqueryui.com/changelog/1.12.0/
lists	www.lists.apache.org/thread.html/519eb0fd45642dcecd9ff74cb3e71c20a4753f7d82e2f07864b5108f@%3Cdev.drill.apache.org%3E
lists	www.lists.apache.org/thread.html/b0656d359c7d40ec9f39c8cc61bca66802ef9a2a12ee199f5b0c1442@%3Cdev.drill.apache.org%3E
lists	www.lists.apache.org/thread.html/ba79cf1658741e9f146e4c59b50aee56656ea95d841d358d006c18b6@%3Ccommits.roller.apache.org%3E
lists	www.lists.apache.org/thread.html/f9bc3e55f4e28d1dcd1a69aae6d53e609a758e34d2869b4d798e13cc@%3Cissues.drill.apache.org%3E
lists	www.lists.apache.org/thread.html/ff8dcfe29377088ab655fda9d585dccd5b1f07fabd94ae84fd60a7f8@%3Ccommits.pulsar.apache.org%3E

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

24 Oct 2017 18:33Current

3.4Low risk

Vulners AI Score3.4

CVSS24.3

CVSS36.1

EPSS0.012

CWE-79