THREATINT

We use these services and cookies to improve your user experience. You may opt out if you wish, however, this may limit some features on this site.

Please see our statement on Data Privacy.

Fathom (Privacy friendly web analytics)
Zendesk (Helpdesk and Chat)

Ok

Home | EN
Support
CVE
PUBLISHED

CVE-2018-18405

Assignermitre
Reserved2018-10-16
Published2020-04-22
Updated2024-06-11

Description

jQuery v2.2.2 allows XSS via a crafted onerror attribute of an IMG element. NOTE: this vulnerability has been reported to be spam entry

References

https://gist.github.com/CyberSecurityUP/26c5b032897630fe8407da4a8ef216d4

https://twitter.com/DanielRufde/status/1255185961866145792

https://gitter.im/jquery/jquery?at=5ea844a05cd4fe50a3d7ddc9

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VOE7P7APPRQKD4FGNHBKJPDY6FFCOH3W/ (FEDORA-2020-11be4b36d4) vendor-advisory

cve.org CVE-2018-18405

nvd.nist.gov CVE-2018-18405

Download JSON

Share this page
https://cve.threatint.com/CVE/CVE-2018-18405
Find us on
Data Privacy
Terms of Use
Logo BSI Allianz für Cyber-Sicherheit
© Copyright 2024 THREATINT. Made in Cyprus with +