| Max CVSS | 5.0 | Min CVSS | 4.3 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2007-2379 | 5.0 |
The jQuery framework exchanges data using JavaScript Object Notation (JSON) without an associated protection scheme, which allows remote attackers to obtain the data via a web page that retrieves the data through a URL in the SRC attribute of a SCRIP
|
14-02-2024 - 01:17 | 30-04-2007 - 23:19 | |
| CVE-2016-7103 | 4.3 |
Cross-site scripting (XSS) vulnerability in jQuery UI before 1.12.0 might allow remote attackers to inject arbitrary web script or HTML via the closeText parameter of the dialog function.
|
22-06-2023 - 19:50 | 15-03-2017 - 16:59 | |
| CVE-2010-5312 | 4.3 |
Cross-site scripting (XSS) vulnerability in jquery.ui.dialog.js in the Dialog widget in jQuery UI before 1.10.0 allows remote attackers to inject arbitrary web script or HTML via the title option.
|
21-06-2023 - 18:26 | 24-11-2014 - 16:59 | |
| CVE-2011-4969 | 4.3 |
Cross-site scripting (XSS) vulnerability in jQuery before 1.6.3, when using location.hash to select elements, allows remote attackers to inject arbitrary web script or HTML via a crafted tag.
|
16-04-2019 - 18:29 | 08-03-2013 - 22:55 |