Bug #17516: Update jquery to 2.2.4 to fix XSS - Foreman

Actions

Copy link

Bug #17516

closed

Update jquery to 2.2.4 to fix XSS

Added by Daniel Lobato Garcia over 7 years ago. Updated almost 6 years ago.

Status:

Closed

Priority:

Normal

Assignee:

Daniel Lobato Garcia

Category:

Security

Target version:

1.15.0

Difficulty:

Triaged:

Bugzilla link:

Pull request:

https://github.com/theforeman/foreman/pull/4065

Fixed in Releases:

Found in Releases:

Red Hat JIRA:

Description

Affected versions of the package (< 1.12) are vulnerable to Cross-site Scripting (XSS) attacks when a cross-domain ajax request is performed without the dataType option causing text/javascript responses to be executed.

https://github.com/jquery/jquery/issues/2432 for more information

Related issues 1 (0 open — 1 closed)

History
Notes
Property changes
Associated revisions

Actions

Copy link

Also available in: Atom PDF

Project

General

Profile

Custom queries

Bug #17516

Update jquery to 2.2.4 to fix XSS

Updated by Daniel Lobato Garcia over 7 years ago

Updated by The Foreman Bot over 7 years ago

Updated by Daniel Lobato Garcia over 7 years ago

Updated by Daniel Lobato Garcia over 7 years ago

Updated by Anonymous over 7 years ago

Updated by Dominic Cleal over 7 years ago

Updated by Tomer Brisker over 7 years ago

Updated by Tomer Brisker over 7 years ago