4 matches found
EUVD-2018-0165
Malware in sbrugna...
jQuery < 1.9.0 Cross-Site Scripting
According to its self-reported version number, jQuery is prior to 1.9.0. Therefore, it may be affected by a cross-site scripting vulnerability because the load method fails to recognize and remove "" HTML tags that contain a whitespace character. Note that the scanner has not tested for these...
Cross-Site Scripting in jQuery before 3.4.0
jQuery before 3.4.0 mishandles jQuery.extendtrue, , ... because of Object.prototype pollution. If an unsanitized source object contained an enumerable proto property, it could extend the native Object.prototype...
PT-2012-1248
Name of the Vulnerable Software and Affected Versions jquery versions prior to 1.9.0 Description The issue is related to the jQuery function not properly differentiating between HTML and selectors, allowing for cross-site scripting attacks. In vulnerable versions, jQuery determines whether the...