Lucene search
GoogleOSV:DSA-3249-1HistoryMay 03, 2015 - 12:00 a.m.
jqueryui - security update
2015-05-0300:00:00
Google
osv.dev
18
EPSS
0.002
Percentile
53.1%
Shadowman131 discovered that jqueryui, a JavaScript UI library for
dynamic web applications, failed to properly sanitize its title
option. This would allow a remote attacker to inject arbitrary code
through cross-site scripting.
For the oldstable distribution (wheezy), this problem has been fixed
in version 1.8.ooops.21+dfsg-2+deb7u1.
For the stable distribution (jessie), testing distribution (stretch)
and unstable distribution (sid), this problem has been fixed in
version 1.10.1+dfsg-1.
We recommend that you upgrade your jqueryui packages.
References
Related
ubuntucve
ubuntucve
CVE-2010-5312
2014-11-24 00:00:00
prion
prion
Cross site scripting
2014-11-24 16:59:00
fedora
fedora
[SECURITY] Fedora 21 Update: couchdb-1.6.1-4.fc21
2014-12-12 04:12:51
[SECURITY] Fedora 20 Update: couchdb-1.6.1-4.fc20
2014-12-12 04:03:17
[SECURITY] Fedora 37 Update: drupal7-7.92-1.fc37
2022-11-10 22:46:29
securityvulns
securityvulns
[SECURITY] [DSA 3249-1] jqueryui security update
2015-05-11 00:00:00
nessus
nessus
Fedora 20 : couchdb-1.6.1-4.fc20 (2014-16048)
2014-12-15 00:00:00
Debian DSA-3249-1 : jqueryui - security update
2015-05-05 00:00:00
Fedora 21 : couchdb-1.6.1-4.fc21 (2014-15967)
2014-12-15 00:00:00
nvd
nvd
CVE-2010-5312
2014-11-24 16:59:00
github
github
Cross-site Scripting in jquery-ui
2017-10-24 18:33:38
debian
debian
[SECURITY] [DSA 3249-1] jqueryui security update
2015-05-03 14:28:26
[SECURITY] [DSA 3249-1] jqueryui security update
2015-05-03 14:28:26
[SECURITY] [DLA 258-1] jqueryui security update
2015-06-29 20:29:12
debiancve
debiancve
CVE-2010-5312
2014-11-24 16:59:00
openvas
openvas
Debian: Security Advisory (DSA-3249-2)
2015-05-02 00:00:00
Mageia: Security Advisory (MGASA-2014-0559)
2022-01-28 00:00:00
Debian Security Advisory DSA 3249-1 (jqueryui - security update)
2015-05-03 00:00:00
rubygems
rubygems
Cross-site Scripting in jquery-ui
2017-10-23 21:00:00
mageia
mageia
Updated couchdb packages fix CVE-2010-5312
2014-12-31 15:28:04
osv
osv
Cross-site Scripting in jquery-ui
2017-10-24 18:33:38
drupal7 - security update
2022-01-19 00:00:00
veracode
veracode
Cross-site Scripting (XSS)
2019-01-15 09:06:57
atlassian
atlassian
The jQuery version used in JIRA needs to be updated
2015-05-18 09:31:54
The jQuery version used in JIRA needs to be updated
2015-05-18 09:31:54
alpinelinux
alpinelinux
CVE-2010-5312
2014-11-24 16:59:00
cvelist
cvelist
CVE-2010-5312
2014-11-24 00:00:00
cve
cve
CVE-2010-5312
2014-11-24 16:59:00
redhat
redhat
(RHSA-2015:1462) Moderate: ipa security and bug fix update
2015-07-22 00:00:00
(RHSA-2015:0442) Moderate: ipa security, bug fix, and enhancement update
2015-03-05 00:00:00
ibm
ibm
centos
centos
ipa security update
2015-03-17 13:28:21
ipa security update
2015-07-26 14:13:07
oraclelinux
oraclelinux
ipa security and bug fix update
2015-07-28 00:00:00
ipa security, bug fix, and enhancement update
2015-03-11 00:00:00
f5
f5
K51110104 : XSS vulnerabilities CVE-2010-5312 and CVE-2012-6662
2017-07-19 00:00:00
threatpost
threatpost
Oracle Fixes 253 Vulnerabilities in Last CPU of 2016
2016-10-19 13:39:40
drupal
drupal
Drupal core - Moderately critical - Cross site scripting - SA-CORE-2022-002
2022-01-19 00:00:00
oracle
oracle
Oracle Critical Patch Update - October 2016
2016-10-18 00:00:00