CVE-2011-4969 (Medium) detected in jquery.1.4.4.nupkg #16
Labels
security vulnerability
Security vulnerability detected by WhiteSource
Comments
mend-bolt-for-github
bot
added
the
security vulnerability
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
CVE-2011-4969 - Medium Severity Vulnerability
jQuery is a fast and concise JavaScript Library that simplifies HTML document traversing, event hand...
Library home page: https://api.nuget.org/packages/jquery.1.4.4.nupkg
Path to dependency file: /tmp/ws-scm/SameId/packages/jQuery.UI.Combined.1.8.24/jQuery.UI.Combined.1.8.24.nuspec
Path to vulnerable library: /SameId/packages/jQuery.UI.Combined.1.8.24/jQuery.UI.Combined.1.8.24.nuspec
Dependency Hierarchy:
Found in HEAD commit: 5b65ad8ceb8055e53cc0513997488402273cf64a
Cross-site scripting (XSS) vulnerability in jQuery before 1.6.3, when using location.hash to select elements, allows remote attackers to inject arbitrary web script or HTML via a crafted tag.
Publish Date: 2013-03-08
URL: CVE-2011-4969
Base Score Metrics not available
Type: Upgrade version
Origin: https://nvd.nist.gov/vuln/detail/CVE-2011-4969
Release Date: 2013-03-08
Fix Resolution: 1.6.3
Step up your Open Source Security Game with WhiteSource here
The text was updated successfully, but these errors were encountered: