THREATINT

We use these services and cookies to improve your user experience. You may opt out if you wish, however, this may limit some features on this site.

Please see our statement on Data Privacy.

Zendesk (Helpdesk and Chat)

Ok

PUBLISHED

CVE-2018-18405

Reserved:2018-10-16
Published:2020-04-22
Updated:2024-06-11

Description

jQuery v2.2.2 allows XSS via a crafted onerror attribute of an IMG element. NOTE: this vulnerability has been reported to be spam entry

References

https://gist.github.com/CyberSecurityUP/26c5b032897630fe8407da4a8ef216d4

https://twitter.com/DanielRufde/status/1255185961866145792

https://gitter.im/jquery/jquery?at=5ea844a05cd4fe50a3d7ddc9

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VOE7P7APPRQKD4FGNHBKJPDY6FFCOH3W/ (FEDORA-2020-11be4b36d4) vendor-advisory

cve.org CVE-2018-18405

nvd.nist.gov CVE-2018-18405

Download JSON

Share this page
https://cve.threatint.com/CVE/CVE-2018-18405