Lucene search

K

RubySecRUBY:JQUERY-RAILS-2012-6708

HistoryAug 31, 2020 - 9:00 p.m.

Cross-Site Scripting in jquery

2020-08-3121:00:00

RubySec

nvd.nist.gov

8

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

CVSS3

6.1

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Affected versions of jquery are vulnerable to cross-site scripting.
This occurs because the main jquery function uses a regular expression
to differentiate between HTML and selectors, but does not properly anchor
the regular expression. The result is that jquery may interpret HTML
as selectors when given certain inputs, allowing for client side code
execution.

Proof of Concept

$(“#log”).html(
$(“element[attribute=‘<img src />’]”).html()
);

Affected configurations

Vulners

Node

rubyjquery-railsRange2.1.0–2.1.4

OR

rubyjquery-railsRange≤2.2.0

VendorProductVersionCPE
rubyjquery-rails*cpe:2.3:a:ruby:jquery-rails:*:*:*:*:*:*:*:*

References

nvd.nist.gov/vuln/detail/cve-2012-6708

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

CVSS3

6.1

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Related for RUBY:JQUERY-RAILS-2012-6708

alpinelinux1 redhatcve1 packetstorm1 ubuntucve1 cvelist1 nessus11 cbl_mariner1 debiancve1 f51 nvd2 exploitdb1 zdt1 github1 prion1 osv2 openvas3 cve2 fortinet1 archlinux2 freebsd1 hackerone1 ibm19 suse1 amazon1 kitploit1 ics1