Lucene search
Ubuntu.comUB:CVE-2020-23064HistoryJun 26, 2023 - 12:00 a.m.
CVE-2020-23064
2023-06-2600:00:00
ubuntu.com
ubuntu.com
646
6.1 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
5.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:P/A:N
0.001 Low
EPSS
Percentile
48.1%
Cross Site Scripting vulnerability in jQuery 2.2.0 through 3.x before 3.5.0
allows a remote attacker to execute arbitrary code via the <options>
element.
Notes
| Author | Note |
|---|---|
| mdeslaur | This is a backwards-incompatible change that breaks existing software. See the upgrade guide for more info: https://jquery.com/upgrade-guide/3.5/ This may be a dupe of CVE-2020-11023 |
Related
ibm
ibm
nessus
nessus
JQuery < 3.5.0 XSS
2023-10-06 00:00:00
EulerOS 2.0 SP10 : python-sphinx (EulerOS-SA-2023-2823)
2024-01-16 00:00:00
EulerOS 2.0 SP10 : doxygen (EulerOS-SA-2023-2808)
2024-01-16 00:00:00
github
github
jQuery Cross Site Scripting vulnerability
2023-06-26 21:30:58
Potential XSS vulnerability in jQuery
2020-04-29 22:19:14
Persistent Cross-site Scripting vulnerability in PrivateBin
2022-04-12 20:45:22
openvas
openvas
Huawei EulerOS: Security Advisory for doxygen (EulerOS-SA-2023-2784)
2023-09-11 00:00:00
Huawei EulerOS: Security Advisory for python-sphinx (EulerOS-SA-2023-2799)
2023-09-11 00:00:00
jQuery 2.2.0 < 3.5.0 XSS Vulnerability
2023-06-28 00:00:00
osv
osv
jQuery Cross Site Scripting vulnerability
2023-06-26 21:30:58
CVE-2020-23064
2023-06-26 19:15:09
CVE-2020-11023
2020-04-29 21:15:11
redhatcve
redhatcve
CVE-2020-23064
2023-07-03 05:17:03
CVE-2020-11023
2021-06-20 07:11:02
cve
cve
CVE-2020-23064
2023-06-26 19:15:00
CVE-2020-11023
2020-04-29 21:15:00
debiancve
debiancve
CVE-2020-23064
2023-06-26 19:15:00
CVE-2020-11023
2020-04-29 21:15:00
prion
prion
Cross site scripting
2023-06-26 19:15:00
Code injection
2020-04-29 21:15:00
zdt
zdt
jQuery 1.0.3 - Cross-Site Scripting Vulnerability
2021-04-14 00:00:00
redhat
redhat
(RHSA-2021:0860) Moderate: ipa security and bug fix update
2021-03-16 10:27:14
(RHSA-2021:1846) Moderate: idm:DL1 and idm:client security, bug fix, and enhancement update
2021-05-18 06:14:07
(RHSA-2020:5412) Moderate: python-XStatic-jQuery224 security update
2020-12-15 17:29:55
amazon
amazon
Medium: ipa
2021-04-20 17:55:00
packetstorm
packetstorm
jQuery 1.0.3 Cross Site Scripting
2021-04-14 00:00:00
ubuntucve
ubuntucve
CVE-2020-11023
2020-04-29 00:00:00
ics
ics
Sensormatic Electronics VideoEdge
2021-11-02 12:00:00
Siemens SINEMA Remote Connect Server
2024-03-14 12:00:00
almalinux
almalinux
Moderate: idm:DL1 and idm:client security, bug fix, and enhancement update
2021-05-18 06:14:07
Low: pcs security, bug fix, and enhancement update
2021-11-09 08:21:49
oraclelinux
oraclelinux
ipa security and bug fix update
2021-03-19 00:00:00
bootstrap security update
2021-08-09 00:00:00
idm:DL1 and idm:client security, bug fix, and enhancement update
2021-05-25 00:00:00
alpinelinux
alpinelinux
CVE-2020-11023
2020-04-29 21:15:00
veracode
veracode
Cross-Site Scripting (XSS)
2020-04-30 02:21:22
f5
f5
K66544153 : jQuery vulnerability CVE-2020-11023
2020-08-03 00:00:00
rocky
rocky
idm:DL1 and idm:client security, bug fix, and enhancement update
2021-05-18 06:14:07
pcs security, bug fix, and enhancement update
2021-11-09 08:21:49
exploitdb
exploitdb
jQuery 1.0.3 - Cross-Site Scripting (XSS)
2021-04-14 00:00:00
suse
suse
Security update for otrs (moderate)
2020-11-10 00:00:00
Security update for cacti, cacti-spine (moderate)
2020-07-28 00:00:00
Security update for cacti, cacti-spine (moderate)
2020-07-25 00:00:00
attackerkb
attackerkb
CVE-2020-11022
2020-04-29 00:00:00
CVE-2020-11023
2020-04-29 00:00:00
githubexploit
githubexploit
Exploit for Cross-site Scripting in Jquery
2021-10-16 01:10:33
Exploit for Cross-site Scripting in Jquery
2020-04-14 19:12:01
atlassian
atlassian
jquery 2.2.4 XSS vulnerability
2022-08-24 14:53:45
Update jQuery to avoid CVE-2020-11022 and CVE-2020-11023
2021-02-02 09:59:24
Update jQuery to avoid CVE-2020-11022 and CVE-2020-11023
2021-02-02 09:59:24
debian
debian
[SECURITY] [DLA 2608-1] jquery security update
2021-03-26 01:32:22
[SECURITY] [DSA 4693-1] drupal7 security update
2020-05-26 21:08:21
checkpoint_advisories
checkpoint_advisories
jQuery Cross Site Scripting (CVE-2020-11022; CVE-2020-11023)
2020-11-16 00:00:00
fedora
fedora
[SECURITY] Fedora 32 Update: drupal8-8.9.0-1.fc32
2020-06-16 01:32:24
[SECURITY] Fedora 33 Update: drupal7-7.72-1.fc33
2020-09-25 17:15:48
[SECURITY] Fedora 32 Update: cacti-1.2.13-1.fc32
2020-07-23 01:06:59
joomla
joomla
[20200604] - Core - XSS in jQuery.htmlPrefilter
2020-04-10 00:00:00
hp
hp
drupal
drupal
Drupal core - Moderately critical - Cross Site Scripting - SA-CORE-2020-002
2020-05-20 00:00:00
typo3
typo3
Cross-Site Scripting in extension "Kitodo.Presentation" (dlf)
2020-07-29 00:00:00
gentoo
gentoo
Cacti: Multiple vulnerabilities
2020-07-26 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 9 package phpipam version 1.42.027-alt1
2020-10-21 00:00:00
freebsd
freebsd
Cacti -- multiple vulnerabilities
2020-07-15 00:00:00
adobe
adobe
APSB19-38 Security update available for Adobe Experience Manager
2019-07-09 00:00:00
6.1 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
5.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:P/A:N
0.001 Low
EPSS
Percentile
48.1%
Related for UB:CVE-2020-23064