Lucene search
K

24 matches found

Circl
Circl
added 2025/04/08 7:49 a.m.9 views

CVE-2020-7656

creationtimestamp| type| source ---|---|--- 2025-04-08 07:49:28+00:00| seen| https://bsky.app/profile/nimblenerd.social/post/3lmbyfspjg726 2025-05-04 07:31:23+00:00| published-proof-of-concept| https://t.me/cyberhsecurity/4452 2025-07-28 13:57:22+00:00| seen|...

6.1CVSS6.8AI score0.06273EPSS
Exploits4References3
Packet Storm
Packet Storm
added 2025/04/08 12:0 a.m.341 views

📄 jQuery 3.3.1 Cross Site Scripting

jQuery version 3.3.1 proof of concept exploit that demonstrates cross site scripting via improper script handling and prototype pollution. Exploit Title: jQuery Prototype Pollution & XSS Exploit CVE-2019-11358 & CVE-2020-7656 Google Dork: N/A Date: 2025-02-13 Exploit Author: xOryus Vendor Homepag...

6.1CVSS6.3AI score0.87218EPSS
Exploits5
Exploit DB
Exploit DB
added 2025/04/08 12:0 a.m.543 views

jQuery 3.3.1 - Prototype Pollution & XSS Exploit

Exploit Title: jQuery Prototype Pollution & XSS Exploit CVE-2019-11358 & CVE-2020-7656 Google Dork: N/A Date: 2025-02-13 Exploit Author: xOryus Vendor Homepage: https://jquery.com Software Link: https://code.jquery.com/jquery-3.3.1.min.js Version: 3.3.1 Tested on: Windows 10, Ubuntu 20.04, Chrome...

6.1CVSS7.4AI score0.87218EPSS
Exploits5
Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.16 views

Linux Distros Unpatched Vulnerability : CVE-2020-7656

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - jquery prior to 1.9.0 allows Cross-site Scripting attacks via the load method. The load method fails to recognize and remove HTML tags that contain a whitespace...

6.1CVSS7.2AI score0.06273EPSS
Exploits4References3
IBM Security Bulletins
IBM Security Bulletins
added 2024/11/11 11:31 a.m.38 views

Security Bulletin: Vulnerabilities Addressed in IBM Tivoli Network Manager IP Edition (ITNM) version 4.2 Fix Pack 20 (4.2.0.20)

Summary Multiple vulnerabilities were addressed in ITNM version 4.2 Fix Pack 20 4.2.0.20 Vulnerability Details CVEID:CVE-2024-23944 DESCRIPTION: Apache ZooKeeper could allow a remote authenticated attacker to obtain sensitive information, caused by a flaw in persistent watchers handling. By...

7.5CVSS9.6AI score0.99019EPSS
Exploits21Affected Software1
Tenable Nessus
Tenable Nessus
added 2024/06/03 12:0 a.m.34 views

RHEL 7 : pcp (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - jquery: Cross-site scripting XSS via HTML tags containing whitespaces CVE-2020-7656 - jQuery before 1.9.0...

6.1CVSS6.6AI score0.08632EPSS
Exploits9References2
Tenable Nessus
Tenable Nessus
added 2024/05/11 12:0 a.m.63 views

RHEL 7 : jquery (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - jquery: Cross-site scripting XSS via HTML tags containing whitespaces CVE-2020-7656 - In jQuery versions...

7.8AI score0.99019EPSS
Exploits14References3
Tenable Nessus
Tenable Nessus
added 2024/05/11 12:0 a.m.37 views

RHEL 6 : jquery (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - jquery: Cross-site scripting XSS via HTML tags containing whitespaces CVE-2020-7656 - In jQuery versions...

7.8AI score0.99019EPSS
Exploits14References3
Tenable Nessus
Tenable Nessus
added 2024/04/28 12:0 a.m.30 views

RHEL 6 / 7 / 8 : Red Hat AMQ Interconnect 1.9.0 (RHSA-2020:4211)

The remote Redhat Enterprise Linux 6 / 7 / 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:4211 advisory. Red Hat AMQ Interconnect is a component of the AMQ 7 product family. AMQ Interconnect provides flexible routing of messages between...

6.9CVSS7AI score0.99019EPSS
Exploits14References17
IBM Security Bulletins
IBM Security Bulletins
added 2023/05/17 7:40 p.m.73 views

Security Bulletin: IBM InfoSphere Information Server is affected by multiple vulnerabilities in JQuery, Node.js and Swagger UI

Summary Multiple vulnerabilities in JQuery, Node.js and Swagger UI used by InfoSphere Information Server were addressed. Vulnerability Details CVEID:CVE-2021-23358 DESCRIPTION: Node.js underscore module could allow a remote attacker to execute arbitrary code on the system, caused by a flaw in the...

9.8CVSS8.1AI score0.99019EPSS
Exploits27Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2022/05/04 11:20 a.m.53 views

Security Bulletin: Cross Site Scripting vulnerabilities in jQuery might affect IBM Business Automation Workflow and IBM Business Process Manager (BPM) - CVE-2020-7656, CVE-2020-11022, CVE-2020-11023

Summary Cross Site Scripting vulnerabilities in jQuery might affect Process Portal in IBM Business Automation Workflow and IBM Business Process Manager BPM. Vulnerability Details CVEID: CVE-2020-7656 DESCRIPTION: jQuery is vulnerable to cross-site scripting, caused by improper validation of...

6.9CVSS0.8AI score0.99019EPSS
Exploits14Affected Software4
Tenable Nessus
Tenable Nessus
added 2022/02/09 12:0 a.m.268 views

AlmaLinux 8 : pcs (ALSA-2021:4142)

The remote AlmaLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2021:4142 advisory. - jquery prior to 1.9.0 allows Cross-site Scripting attacks via the load method. The load method fails to recognize and remove HTML tags that contain a...

6.9CVSS6.8AI score0.8383EPSS
Exploits9References3
Tenable Nessus
Tenable Nessus
added 2021/11/19 12:0 a.m.52 views

Oracle Linux 8 : pcs (ELSA-2021-9552)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2021-9552 advisory. 0.10.10-4.0.1 - Replace HAM-logo.png with a generic one 0.10.10-4 - Fixed unfencing in - Resolves: rhbzbz1991654 0.10.10-3 - Added add/remove syntax fo...

6.9CVSS7AI score0.8383EPSS
Exploits9References3
Tenable Nessus
Tenable Nessus
added 2021/11/11 12:0 a.m.256 views

CentOS 8 : pcs (CESA-2021:4142)

The remote CentOS Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the CESA-2021:4142 advisory. - jquery: Untrusted code execution via tag in HTML passed to DOM manipulation methods CVE-2020-11023 - jquery: Cross-site scripting XSS via HTML tags...

6.9CVSS7.3AI score0.8383EPSS
Exploits9References3
RedHat Linux
RedHat Linux
added 2021/11/09 5:49 p.m.106 views

Low: Red Hat Security Advisory: pcs security, bug fix, and enhancement update

An update for pcs is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Low. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE lin...

6.9CVSS7.1AI score0.87218EPSS
Exploits10References26
AlmaLinux
AlmaLinux
added 2021/11/09 8:21 a.m.82 views

Low: pcs security, bug fix, and enhancement update

The pcs packages provide a command-line configuration system for the Pacemaker and Corosync utilities. The following packages have been upgraded to a later upstream version: pcs 0.10.10. BZ1935594 Security Fixes: jquery: Cross-site scripting XSS via HTML tags containing whitespaces CVE-2020-7656...

6.9CVSS7.1AI score0.8383EPSS
Exploits9References2
IBM Security Bulletins
IBM Security Bulletins
added 2021/09/15 9:10 p.m.147 views

Security Bulletin: IBM Aspera Webapps are vulnerable to cross-site scripting (CVE-2020-7656).

Summary IBM Aspera Webapps are vulnerable to cross-site scripting. See vulnerability details for more information. Vulnerability Details CVEID: CVE-2020-7656 DESCRIPTION: jQuery is vulnerable to cross-site scripting, caused by improper validation of user-supplied input by the load method. A remot...

6.1CVSS1.5AI score0.06273EPSS
Exploits4Affected Software1
RedHat Linux
RedHat Linux
added 2020/10/08 7:1 a.m.147 views

Moderate: Red Hat Security Advisory: Red Hat AMQ Interconnect 1.9.0 release and security update

Red Hat AMQ Interconnect 1.9.0 release packages are available for A-MQ Interconnect on RHEL 6, 7, and 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

6.9CVSS7.1AI score0.99019EPSS
Exploits14References12
IBM Security Bulletins
IBM Security Bulletins
added 2020/10/07 9:18 p.m.43 views

Security Bulletin: Steps to update DataQuant Workstation and DataQuant WebSphere plugins.

Summary Query is vulnerable to cross-site scripting, caused by improper validation of user-supplied input by the load method. A remote attacker could exploit this vulnerability to inject malicious script into a Web page which would be executed in a victim's Web browser within the security context...

6.1CVSS0.3AI score0.06273EPSS
Exploits4Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2020/08/11 7:18 p.m.51 views

Security Bulletin: A vulnerability in jQuery affects IBM WIoTP MessageGateway (CVE-2020-7656)

Summary There is a vulnerability in jQuery that affects IBM WIoTP MessageGateway. Vulnerability Details CVEID: CVE-2020-7656 DESCRIPTION: jQuery is vulnerable to cross-site scripting, caused by improper validation of user-supplied input by the load method. A remote attacker could exploit this...

6.1CVSS1.1AI score0.06273EPSS
Exploits4Affected Software1
Rows per page
Query Builder