Vulnerabilities > Jquery

DATE CVE VULNERABILITY TITLE RISK
2021-10-26 CVE-2021-41182 Cross-site Scripting vulnerability in multiple products
jQuery-UI is the official jQuery user interface library.
4.3
2021-10-26 CVE-2021-41183 Cross-site Scripting vulnerability in multiple products
jQuery-UI is the official jQuery user interface library.
4.3
2021-10-26 CVE-2021-41184 Cross-site Scripting vulnerability in multiple products
jQuery-UI is the official jQuery user interface library.
4.3
2021-01-22 CVE-2020-28488 Resource Exhaustion vulnerability in Jquery UI
This affects all versions of package jquery-ui; all versions of package org.fujion.webjars:jquery-ui.
network
low complexity
jquery CWE-400
5.0
2020-05-19 CVE-2020-7656 Cross-site Scripting vulnerability in Jquery
jquery prior to 1.9.0 allows Cross-site Scripting attacks via the load method.
network
jquery CWE-79
4.3
2020-04-29 CVE-2020-11022 Cross-site Scripting vulnerability in multiple products
In jQuery versions greater than or equal to 1.2 and before 3.5.0, passing HTML from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e.
4.3
2020-04-29 CVE-2020-11023 Cross-site Scripting vulnerability in multiple products
In jQuery versions greater than or equal to 1.0.3 and before 3.5.0, passing HTML containing <option> elements from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e.
4.3
2020-04-22 CVE-2018-18405 Cross-site Scripting vulnerability in Jquery 2.2.2
** DISPUTED ** jQuery v2.2.2 allows XSS via a crafted onerror attribute of an IMG element.
network
jquery CWE-79
4.3
2019-04-20 CVE-2019-11358 jQuery before 3.4.0, as used in Drupal, Backdrop CMS, and other products, mishandles jQuery.extend(true, {}, ...) because of Object.prototype pollution. 4.3
2018-01-18 CVE-2016-10707 Resource Exhaustion vulnerability in Jquery 3.0.0
jQuery 3.0.0-rc.1 is vulnerable to Denial of Service (DoS) due to removing a logic that lowercased attribute names.
network
low complexity
jquery CWE-400
5.0