Lucene search

Use of insecure jQuery version in OctoberCMS

🗓️ 05 Jun 2020 19:49:37Reported by GitHub Advisory DatabaseType

github🔗 github.com👁 221 Views

Use of insecure jQuery version in OctoberCMS. Passing HTML from untrusted sources to jQuery's DOM manipulation methods may execute untrusted code. Patches available in Build 466

Reporter	Title	Published	Views	Family All 199
OSV	RHSA-2020:2217 Red Hat Security Advisory: OpenShift Container Platform 3.11 security update	18 Sep 202404:13	–	osv
OSV	CVE-2020-11022	29 Apr 202022:15	–	osv
OSV	Use of insecure jQuery version in OctoberCMS	5 Jun 202019:37	–	osv
OSV	BIT-drupal-2020-11022	6 Mar 202410:59	–	osv
OSV	Potential XSS vulnerability in jQuery	29 Apr 202022:18	–	osv
OSV	jquery - security update	25 Mar 202100:00	–	osv
OSV	USN-7246-1 jquery vulnerabilities	30 Jan 202513:45	–	osv
OSV	drupal7 - security update	26 May 202000:00	–	osv
OSV	RHSA-2020:4211 Red Hat Security Advisory: Red Hat AMQ Interconnect 1.9.0 release and security update	18 Sep 202404:27	–	osv
OSV	RHSA-2020:2362 Red Hat Security Advisory: Red Hat OpenShift Service Mesh security update	18 Sep 202404:13	–	osv

Vulners

Node

october systemRange1.0.319–1.0.466

october octoberRange1.0.319–1.0.466

Source	Link
github	www.github.com/octobercms/october/security/advisories/GHSA-v73w-r9xg-7cr9
github	www.github.com/octobercms/october/issues/5097
github	www.github.com/octobercms/october/commit/5c7ba9fbe9f2b596b2f0e3436ee06b91b97e5892
github	www.github.com/advisories/GHSA-v73w-r9xg-7cr9

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

05 Jun 2020 19:37Current

0.5Low risk

Vulners AI Score0.5

CVSS24.3

CVSS36.1 - 6.9

EPSS0.01807