CPANSA-Squatting-2012-6708-jquery: Squatting vulnerability

Publisher	giterlizzi	Document category	csaf_security_advisory
Initial release date	2018-01-18T00:00:00	Engine	CSAF Perl Toolkit 0.25
Current release date	2018-01-18T00:00:00	Build Date
Current version	1	Status	final
CVSS v3.1 Base Score	6.1	Severity	Medium
Original language		Language	en
Also referred to

Vulnerability Description

jQuery before 1.9.0 is vulnerable to Cross-site Scripting (XSS) attacks. The jQuery(strInput) function does not differentiate selectors from HTML in a reliable fashion. In vulnerable versions, jQuery determined whether the input was HTML by looking for the '<' character anywhere in the string, giving attackers more flexibility when attempting to construct a malicious payload. In fixed versions, jQuery only deems the input to be HTML if it explicitly starts with the '<' character, limiting exploitability only to attackers who can control the beginning of a string, which is far less common.

Vulnerabilities

CVE-2012-6708

Vulnerability Description

Weakness	CWE-79 : Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Product status

Known affected

Product

Score

Squatting greater than or equal 0.40 and less than or equal 0.83

CVSS Version	CVSS Vector	CVSS Base Score	CVSS Base Severity
3.0	CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N	6.1	Medium
2.0	AV:N/AC:M/Au:N/C:N/I:P/A:N	4.3	Medium

giterlizzi

Namespace: https://github.com/giterlizzi/

gdt@cpan.org

References

CPANSA-Squatting-2012-6708-jquery JSON self
https://raw.githubusercontent.com/giterlizzi/perl-CPANSA-CSAF/develop/csaf/white/2018/cpansa-squatting-2012-6708-jquery.json
https://snyk.io/vuln/npm:jquery:20120206 external
https://snyk.io/vuln/npm:jquery:20120206
https://github.com/jquery/jquery/commit/05531fc4080ae24070930d15ae0cea7ae056457d external
https://github.com/jquery/jquery/commit/05531fc4080ae24070930d15ae0cea7ae056457d
https://bugs.jquery.com/ticket/11290 external
https://bugs.jquery.com/ticket/11290
http://www.securityfocus.com/bid/102792 external
http://www.securityfocus.com/bid/102792
https://help.ecostruxureit.com/display/public/UADCE725/Security+fixes+in+StruxureWare+Data+Center+Expert+v7.6.0 external
https://help.ecostruxureit.com/display/public/UADCE725/Security+fixes+in+StruxureWare+Data+Center+Expert+v7.6.0
http://packetstormsecurity.com/files/153237/RetireJS-CORS-Issue-Script-Execution.html external
http://packetstormsecurity.com/files/153237/RetireJS-CORS-Issue-Script-Execution.html
https://lists.apache.org/thread.html/b0656d359c7d40ec9f39c8cc61bca66802ef9a2a12ee199f5b0c1442@%3Cdev.drill.apache.org%3E external
https://lists.apache.org/thread.html/b0656d359c7d40ec9f39c8cc61bca66802ef9a2a12ee199f5b0c1442@%3Cdev.drill.apache.org%3E
https://lists.apache.org/thread.html/519eb0fd45642dcecd9ff74cb3e71c20a4753f7d82e2f07864b5108f@%3Cdev.drill.apache.org%3E external
https://lists.apache.org/thread.html/519eb0fd45642dcecd9ff74cb3e71c20a4753f7d82e2f07864b5108f@%3Cdev.drill.apache.org%3E
http://lists.opensuse.org/opensuse-security-announce/2020-03/msg00041.html external
http://lists.opensuse.org/opensuse-security-announce/2020-03/msg00041.html
https://lists.apache.org/thread.html/f9bc3e55f4e28d1dcd1a69aae6d53e609a758e34d2869b4d798e13cc@%3Cissues.drill.apache.org%3E external
https://lists.apache.org/thread.html/f9bc3e55f4e28d1dcd1a69aae6d53e609a758e34d2869b4d798e13cc@%3Cissues.drill.apache.org%3E
http://packetstormsecurity.com/files/161972/Linksys-EA7500-2.0.8.194281-Cross-Site-Scripting.html external
http://packetstormsecurity.com/files/161972/Linksys-EA7500-2.0.8.194281-Cross-Site-Scripting.html
CVE-2012-6708 (NVD) external
https://nvd.nist.gov/vuln/detail/CVE-2012-6708

Revision history

Version	Date of the revision	Summary of the revision
1	Thu Jan 18 00:00:00 2018	First release

Sharing rules

TLP:WHITE
For the TLP version see: https://www.first.org/tlp/