25 matches found
Wicket jQuery UI WYSIWYG Editor Vulnerability
Wicket jQuery UI is an API that provides all the jQuery UI integration . WYSIWYG editor is one of the editors . A security vulnerability exists in the WYSIWYG editor in Wicket jQuery UI versions 6.28.0 and earlier, 7.9.1 and earlier, and 8.0.0-M8 and earlier. An attacker can exploit the...
Vulnerable javascript library: jQuery
Good morning. It has been brought to my attention that jQuery library has a vulnerability. In jQuery version before 1.9.0b1 selector interpreted as HTML. This could lead to potential vulnerabilities https://bugs.jquery.com/ticket/11290. Solution: jQuery version 1.9.0b1 has been released to addres...
Drupal cross-site scripting vulnerability (CNVD-2018-05185)
Drupal is a free, open source content management system developed in PHP and maintained by the Drupal community. jQuery is one of the JavaScript libraries used in it. A cross-site scripting vulnerability exists in jQuery in Drupal versions 8 and 7. A remote attacker can exploit this vulnerability...
Patched Microsoft Office 365 XSS Vulnerability Disclosed
A researcher in the UK disclosed the details of a serious cross-site scripting vulnerability in Office 365 that would allow an attacker with a mailbox on Office 365 to gain administrator rights over the Microsoft Web-based application in an organization. An exploit in an enterprise environment...
[SECURITY] Fedora 18 Update: python-tw2-jquery-2.0.3-5.fc18
toscawidgets2 tw2 aims to be a practical and useful widgets framework that helps people build interactive websites with compelling features, fast er and easier. Widgets are re-usable web components that can include a templat e, server-side code and JavaScripts/CSS resources. The library aims to b...