It was found that a parameter of the dialog box feature of jQuery UI was vulnerable to cross site scripting. An attacker could use this flaw to execute a malicious script via the dialog box when it was displayed to a user.

References

bugzilla.redhat.com/show_bug.cgi?id=1360286

nodesecurity.io/advisories/127

veracode 1

fedora 6

cvelist 1

osv 4

redhat 3

openvas 10

ibm 7

attackerkb 1

alpinelinux 1

f5 2

cve 1

github 1

nvd 1

prion 1

debiancve 1

checkpoint_advisories 1

ubuntucve 1

nodejs 1

nessus 11

drupal 1

debian 1

ubuntu 1

ics 1

oracle 7

veracode

Cross-site Scripting (XSS) Via Dialog CloseText

2019-01-15 09:14:35

fedora

[SECURITY] Fedora 30 Update: rubygem-jquery-ui-rails-6.0.1-1.fc30

2019-06-19 22:46:06

[SECURITY] Fedora 25 Update: python-XStatic-jquery-ui-1.12.0.1-4.fc25

2017-11-22 05:09:08

[SECURITY] Fedora 26 Update: python-XStatic-jquery-ui-1.12.0.1-2.fc26

2017-11-22 02:32:23

cvelist

CVE-2016-7103

2017-03-15 00:00:00

osv

CVE-2016-7103

2017-03-15 16:59:00

jQuery-UI vulnerable to Cross-site Scripting in dialog closeText

2017-10-24 18:33:35

drupal7 - security update

2022-01-19 00:00:00

redhat

(RHSA-2016:2932) Low: python-XStatic-jquery-ui security update

2016-12-08 16:02:28

(RHSA-2017:0161) Low: python-XStatic-jquery-ui security update

2017-01-19 13:13:57

(RHSA-2016:2933) Low: python-XStatic-jquery-ui security update

2016-12-08 16:02:32

openvas

Fedora Update for python-XStatic-jquery-ui FEDORA-2017-1bf5a0ce01

2017-11-23 00:00:00

Fedora Update for python-XStatic-jquery-ui FEDORA-2017-e2d17af41e

2017-11-23 00:00:00

Fedora Update for rubygem-jquery-ui-rails FEDORA-2019-a96124345a

2019-06-20 00:00:00

ibm

Security Bulletin: IBM Security Guardium Big Data Intelligence (SonarG) is affected by a Using Components with Known Vulnerabilities vulnerability

2018-06-16 22:07:03

Security Bulletin: Multiple vulnerabilities identified in jQuery-UI affects IBM Engineering Lifecycle Optimization - Publishing

2023-10-04 08:27:50

Security Bulletin: IBM Cognos Analytics has addressed multiple vulnerabilities

2020-07-30 13:47:03

attackerkb

CVE-2016-7103

2017-03-15 00:00:00

alpinelinux

CVE-2016-7103

2017-03-15 16:59:00

K95208524 : jQuery vulnerability CVE-2016-7103

2017-11-13 00:00:00

K12492858 : Appliance mode authenticated F5 BIG-IP Guided Configuration third-party lodash and jQuery vulnerabilities CVE-2021-23337, CVE-2020-28500, and CVE-2016-7103

2022-05-06 00:00:00

cve

CVE-2016-7103

2017-03-15 16:59:00

github

jQuery-UI vulnerable to Cross-site Scripting in dialog closeText

2017-10-24 18:33:35

nvd

CVE-2016-7103

2017-03-15 16:59:00

prion

Cross site scripting

2017-03-15 16:59:00

debiancve

CVE-2016-7103

2017-03-15 16:59:00

checkpoint_advisories

jQuery UI Cross-site Scripting (CVE-2016-7103)

2022-10-23 00:00:00

ubuntucve

CVE-2016-7103

2017-03-15 00:00:00

nodejs

XSS in dialog closeText

2016-07-21 20:53:40

nessus

F5 Networks BIG-IP : Appliance mode authenticated F5 BIG-IP Guided Configuration third-party lodash and jQuery vulnerabilities (K12492858)

2023-11-02 00:00:00

Ubuntu 16.04 ESM / 18.04 ESM / 20.04 LTS : jQuery UI vulnerabilities (USN-6419-1)

2023-10-05 00:00:00

Drupal 7.x < 7.86 / 9.2.x < 9.2.11 / 9.3.x < 9.3.3 Multiple Vulnerabilities (drupal-2022-01-19)

2022-01-19 00:00:00

drupal

Drupal core - Moderately critical - Cross site scripting - SA-CORE-2022-002

2022-01-19 00:00:00

debian

[SECURITY] [DLA-2889-1] drupal7 security update

2022-01-19 20:00:29

ubuntu

jQuery UI vulnerabilities

2023-10-05 00:00:00

ics

Hitachi Energy MSM Product

2022-08-30 12:00:00

oracle

Oracle Critical Patch Update Advisory - October 2019

2020-01-22 00:00:00

Oracle Critical Patch Update Advisory - April 2019

2019-04-16 00:00:00

Oracle Critical Patch Update Advisory - July 2019

2019-07-16 00:00:00

Solutions

Vulnerabilities intelligence
Perimeter control tool
Linux scanner
Windows scanner
Developers SDK
Security Intelligence feeds

Database

Vulnerabilities
Exploits
Security News
BugBounty
Wild Exploited
Top Vulnerabilities
CVE Feed

Resources

Statics & Sources
Plugins
API docs
FAQ
Blog
Glossary

Company

About
Contacts
Pricing
EULA
Privacy Policy
Submission Policy
OpenSource

@2024 Vulners Inc

0.005 Low

EPSS

Percentile

75.7%

JSON

Related for RH:CVE-2016-7103