vendor:
jQuery
by:
Central InfoSec
6.1
CVSS
MEDIUM
Cross-Site Scripting (XSS)
79
CWE
Product Name: jQuery
Affected Version From: 1.0.3
Affected Version To: 3.5.0
Patch Exists: YES
Related CWE: CVE-2020-11023
CPE: jquery
Metasploit:
https://www.rapid7.com/db/vulnerabilities/gentoo-linux-cve-2020-11023/, https://www.rapid7.com/db/vulnerabilities/alma_linux-cve-2020-11023/, https://www.rapid7.com/db/vulnerabilities/suse-cve-2020-11023/, https://www.rapid7.com/db/vulnerabilities/oracle-weblogic-cve-2020-11023/, https://www.rapid7.com/db/vulnerabilities/oracle-solaris-cve-2020-11023/, https://www.rapid7.com/db/vulnerabilities/red_hat-jboss_eap-cve-2020-11023/, https://www.rapid7.com/db/vulnerabilities/oracle-missing-cpu-oct-2020-cve-2020-11023/, https://www.rapid7.com/db/vulnerabilities/centos_linux-cve-2020-11023/, https://www.rapid7.com/db/vulnerabilities/drupal-cve-2020-11023/, https://www.rapid7.com/db/vulnerabilities/jquery-cve-2020-11023/, https://www.rapid7.com/db/vulnerabilities/amazon-linux-ami-2-cve-2020-11023/, https://www.rapid7.com/db/vulnerabilities/freebsd-cve-2020-11023/, https://www.rapid7.com/db/vulnerabilities/debian-cve-2020-11023/, https://www.rapid7.com/db/vulnerabilities/redhat_linux-cve-2020-11023/, https://www.rapid7.com/db/vulnerabilities/oracle_linux-cve-2020-11023/, https://www.rapid7.com/db/vulnerabilities/f5-big-ip-cve-2020-11023/
Other Scripts:
N/A
Platforms Tested: All
2020
jQuery 1.0.3 – Cross-Site Scripting (XSS)
jQuery versions greater than or equal to 1.0.3 and before 3.5.0 are vulnerable to Cross-Site Scripting (XSS). Two proof of concepts have been provided, one for jQuery versions greater than or equal to 1.0.3 and before 3.5.0 and the other for jQuery 3.x. The first proof of concept involves using a style tag with an img tag containing an onerror attribute. The second proof of concept involves using an img tag with an alt and title attribute containing a malicious payload.
Mitigation:
Developers should upgrade to jQuery 3.5.0 or later.
