Lucene search
Redhat.comRH:CVE-2020-23064HistoryJul 03, 2023 - 5:17 a.m.
CVE-2020-23064
2023-07-0305:17:03
redhat.com
access.redhat.com
113
jquery
cross-site scripting
remote attacker
user-supplied input
validation
security context
authentication credentials
0.0004 Low
EPSS
Percentile
15.8%
A flaw was found in jQuery, where it is vulnerable to Cross-site scripting, caused by the improper validation of user-supplied input by the element. This flaw allows a remote attacker to use a specially crafted URL to execute a script in a victim’s web browser within the security context of the hosting website once the URL is clicked. An attacker could use this vulnerability to steal the victim’s cookie-based authentication credentials.
Related
openvas
openvas
Huawei EulerOS: Security Advisory for doxygen (EulerOS-SA-2023-2784)
2023-09-11 00:00:00
Huawei EulerOS: Security Advisory for doxygen (EulerOS-SA-2023-2808)
2023-09-11 00:00:00
jQuery 2.2.0 < 3.5.0 XSS Vulnerability
2023-06-28 00:00:00
prion
prion
Cross site scripting
2023-06-26 19:15:00
ibm
ibm
github
github
Duplicate Advisory: jQuery Cross Site Scripting vulnerability
2023-06-26 21:30:58
osv
osv
CVE-2020-23064
2023-06-26 19:15:09
jQuery Cross Site Scripting vulnerability
2023-06-26 21:30:58
cvelist
cvelist
CVE-2020-23064
2023-06-26 00:00:00
nessus
nessus
EulerOS 2.0 SP10 : python-sphinx (EulerOS-SA-2023-2823)
2024-01-16 00:00:00
JQuery < 3.5.0 XSS
2023-10-06 00:00:00
EulerOS 2.0 SP10 : doxygen (EulerOS-SA-2023-2808)
2024-01-16 00:00:00
debiancve
debiancve
CVE-2020-23064
2023-06-26 19:15:09
cve
cve
CVE-2020-23064
2023-06-26 19:15:09
ics
ics
Siemens SINEMA Remote Connect Server
2024-03-14 12:00:00
nvd
nvd
CVE-2020-23064
2023-06-26 19:15:09
ubuntucve
ubuntucve
CVE-2020-23064
2023-06-26 00:00:00