WS-2016-0090 (Medium) detected in jquery-1.9.0.js #48

mend-bolt-for-github · 2019-09-02T22:55:38Z

WS-2016-0090 - Medium Severity Vulnerability

Vulnerable Library - jquery-1.9.0.js

JavaScript library for DOM operations

Library home page: https://cdnjs.cloudflare.com/ajax/libs/jquery/1.9.0/jquery.js

Path to vulnerable library: /spring-boot/spring-boot-samples/spring-boot-sample-atmosphere/src/main/resources/static/javascript/jquery-1.9.0.js,/spring-boot/spring-boot-samples/spring-boot-sample-atmosphere/src/main/resources/static/javascript/jquery-1.9.0.js

Dependency Hierarchy:

❌ jquery-1.9.0.js (Vulnerable Library)

Found in HEAD commit: a1ab3868e6a7a0bead32de21ff296a637001a01c

Vulnerability Details

JQuery, before 2.2.0, is vulnerable to Cross-site Scripting (XSS) attacks via text/javascript response with arbitrary code execution.

Publish Date: 2016-11-27

URL: WS-2016-0090

CVSS 2 Score Details (4.3)

Base Score Metrics not available

Suggested Fix

Type: Upgrade version

Origin: jquery/jquery@b078a62

Release Date: 2019-04-08

Fix Resolution: 2.2.0

The text was updated successfully, but these errors were encountered:

mend-bolt-for-github bot added the security vulnerability Security vulnerability detected by WhiteSource label Sep 2, 2019

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

WS-2016-0090 (Medium) detected in jquery-1.9.0.js #48

WS-2016-0090 (Medium) detected in jquery-1.9.0.js #48

mend-bolt-for-github bot commented Sep 2, 2019

WS-2016-0090 (Medium) detected in jquery-1.9.0.js #48

WS-2016-0090 (Medium) detected in jquery-1.9.0.js #48

Comments

mend-bolt-for-github bot commented Sep 2, 2019

WS-2016-0090 - Medium Severity Vulnerability