Exposición de jQuery

JavaScript libraries

98

score de exposición

6.030.061

sitios usan

1

en explotación

0

críticos

CVEs

54 resultados

CVE-2020-11023MEDIUMPotential XSS vulnerability in jQueryEPSS 83.8%KEV CVE-2020-11022MEDIUMjQuery has a potential XSS vulnerabilityEPSS 99.0%CVE-2018-9206—Unauthenticated arbitrary file upload vulnerability in Blueimp jQuery-File-Upload <= v9.22.0EPSS 97.1%CVE-2021-41184MEDIUMXSS in the `of` option of the `.position()` utilEPSS 42.8%CVE-2021-41182MEDIUMXSS in the `altField` option of the Datepicker widgetEPSS 37.8%CVE-2021-41183MEDIUMXSS in `*Text` options of the Datepicker widgetEPSS 7.9%CVE-2020-7656—jquery prior to 1.9.0 allows Cross-site Scripting attacks via the load method. The load method fails to recognize and remove "<script>" HTMLEPSS 6.3%CVE-2021-20086—Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') in jquery-bbq 1.2.1 allows a malicious user to injEPSS 6.1%CVE-2021-20083—Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') in jquery-plugin-query-object 2.2.3 allows a malicEPSS 4.2%CVE-2021-21252MEDIUMRegular expression denial of service in jquery-validationEPSS 3.5%CVE-2018-9207—Arbitrary file upload in jQuery Upload File <= 4.0.2EPSS 3.5%CVE-2018-9208—Unauthenticated arbitrary file upload vulnerability in jQuery Picture Cut <= v1.1BetaEPSS 2.7%CVE-2018-0645—MTAppjQuery 1.8.1 and earlier allows remote PHP code execution via unspecified vectors.EPSS 2.4%CVE-2021-20087—Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') in jquery-deparam 0.5.1 allows a malicious user toEPSS 2.1%CVE-2022-31160MEDIUMjQuery UI contains potential XSS vulnerability when refreshing a checkboxradio with an HTML-like initial text labelEPSS 1.9%CVE-2022-31147HIGHjquery-validation ReDoS in url2 due to incomplete fix of CVE-2021-43306EPSS 1.6%CVE-2021-20084—Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') in jquery-sparkle 1.5.2-beta allows a malicious usEPSS 1.4%CVE-2021-43306MEDIUMExponential ReDoS in jquery-validationEPSS 1.3%CVE-2017-16045—`jquery.js` was a malicious module published with the intent to hijack environment variables. It has been unpublished by npm.EPSS 1.1%CVE-2021-43862LOWSelf XSS on user inputEPSS 1.0%

← anteriorpágina 1 / 3siguiente →

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →