We use these services and cookies to improve your user experience. You may opt out if you wish, however, this may limit some features on this site.

Please see our statement on Data Privacy.

Crisp.chat (Helpdesk and Chat)

Ok

THREATINT
PUBLISHED

CVE-2024-30875



Assignermitre
Reserved2024-03-27
Published2024-10-17
Updated2024-10-25

Description

Cross Site Scripting vulnerability in JavaScript Library jquery-ui v.1.13.1 allows a remote attacker to obtain sensitive information and execute arbitrary code via a crafted payload to the window.addEventListener component. NOTE: this is disputed by the Supplier because it cannot be reproduced, and because the exploitation example does not indicate whether, or how, the example website is using jQuery UI.

References

https://github.com/Ant1sec-ops/CVE-2024-30875

cve.org CVE-2024-30875

nvd.nist.gov CVE-2024-30875

Download JSON

Share this page
https://cve.threatint.com
Subscribe to our newsletter to learn more about our work.