2402 matches found
EUVD-2024-22213
Malicious code in bioql PyPI...
EUVD-2025-13772
Malicious code in bioql PyPI...
EUVD-2025-12000
Malicious code in bioql PyPI...
ROS-20251001-03
A vulnerability in the jQuery library exists due to insufficient cleansing of user-supplied data when passing elements to jQuery DOM methods. Exploitation of the vulnerability could allow an attacker, acting remotely, to perform cross-site scripting attacks...
Pentest
This repository is an offensive tool for web application exploitation, specifically a backdoor for web applications. It contains a JavaScript file check.js that is designed to be injected into a web page to steal user credentials. The tool uses the jQuery library jquery.cookie.min.js to manage...
WordPress jQuery Colorbox plugin <= 4.6.3 - Contributor+ Stored XSS vulnerability
Contributor+ Stored XSS vulnerability discovered by Pierre Rudloff in WordPress Plugin jQuery Colorbox versions = 4.6.3...
CVE-2025-3650 jQuery Colorbox <= 4.6.3 - Contributor+ Stored XSS
The jQuery Colorbox WordPress plugin through 4.6.3 uses the colorbox library, which does not sanitize title attributes on links before using them, allowing users with at least the contributor role to conduct XSS attacks against administrators...
Linux Distros Unpatched Vulnerability : CVE-2021-36713
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Cross Site Scripting XSS vulnerability in the DataTables plug-in 1.9.2 for jQuery allows attackers to run arbitrary code via the sBaseName parameter to function...
Exploit for Cross-site Scripting in Jquery
Watchdog Tool Description ------------------------- Watchog is an integration of open source security tools aimed to provide a holistic security view for a given domain/IP. The way Watchdog is built, it can be used by product security teams, red teams and also by bug bounty hunters to get a 360°...
MAL-2025-43465 Malicious code in apachecn-jquery-zh-pt2 (npm)
The package apachecn-jquery-zh-pt2 was found to contain malicious code...
Malicious code in apachecn-jquery-zh-pt2 (npm)
The package apachecn-jquery-zh-pt2 was found to contain malicious code...
Cross-site scripting (XSS) vulnerability in jQuery before 1.6.3, when using location.hash to select elements, allows remote attackers to inject arbitrary web script or HTML via a crafted tag.
...
Linux Distros Unpatched Vulnerability : CVE-2022-23395
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - jQuery Cookie 1.4.1 is affected by prototype pollution, which can lead to DOM cross-site scripting XSS. CVE-2022-23395 Note that Nessus relies on the presence o...
Linux Distros Unpatched Vulnerability : CVE-2022-31160
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - jQuery UI is a curated set of user interface interactions, effects, widgets, and themes built on top of jQuery. Versions prior to 1.13.2 are potentially...
Linux Distros Unpatched Vulnerability : CVE-2021-43306
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An exponential ReDoS Regular Expression Denial of Service can be triggered in the jquery-validation npm package, when an attacker is able to supply arbitrary...
Linux Distros Unpatched Vulnerability : CVE-2022-31147
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The jQuery Validation Plugin jquery-validation provides drop-in validation for forms. Versions of jquery-validation prior to 1.19.5 are vulnerable to regular...
Linux Distros Unpatched Vulnerability : CVE-2025-3573
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Versions of the package jquery-validation before 1.20.0 are vulnerable to Cross-site Scripting XSS in the showLabel function, which may take input from a...
Malicious code in xo-jquery-mask-plugin (npm)
The package xo-jquery-mask-plugin was found to contain malicious code. --- -= Per source details. Do not edit below this line.=- Source: google-open-source-security f59460b8ba9281b320efd1888070928d3c31f86dd0770c7fe38d1f2eecc1e66b This package installs a dependency hosted on a custom domain that...
MAL-2025-23900 Malicious code in jquery-ui-slider-pips (npm)
The package jquery-ui-slider-pips was found to contain malicious code...
Malicious code in jquery-ui.ruler (npm)
The package jquery-ui.ruler was found to contain malicious code...