MidnightBSD

Advisories for jqueryui

CVE-2012-6662 MEDIUM

Cross-site scripting (XSS) vulnerability in the default content option in jquery.ui.tooltip.js in the Tooltip widget in jQuery UI before 1.10.0 allows remote attackers to inject arbitrary web script or HTML via the title attribute, which is not properly handled in the autocomplete combo box demo.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
redhat enterprise_linux_hpc_node 7.0
redhat enterprise_linux_workstation 7.0
jqueryui jquery_ui 1.10.0
redhat enterprise_linux_desktop 7.0
redhat enterprise_linux_server 7.0
CVE-2016-7103 MEDIUM

Cross-site scripting (XSS) vulnerability in jQuery UI before 1.12.0 might allow remote attackers to inject arbitrary web script or HTML via the closeText parameter of the dialog function.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.1 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N 2.8 2.7

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
oracle application_express *
oracle business_intelligence 12.2.1.3.0
redhat openstack 8
oracle oss_support_tools 2.12.42
debian debian_linux 9.0
fedoraproject fedora 30
jqueryui jquery_ui 1.10.0
netapp snapcenter -
oracle weblogic_server 10.3.6.0.0
redhat openstack 9
oracle hospitality_cruise_fleet_management 9.0.11
oracle primavera_unifier *
oracle business_intelligence 12.2.1.4.0
oracle weblogic_server 12.1.3.0.0
oracle oss_support_tools *
juniper junos 21.2
redhat openstack 7.0
fedoraproject fedora 36
oracle siebel_ui_framework *
jquery jquery_ui *
fedoraproject fedora 35
oracle weblogic_server 12.2.1.3.0
CVE-2021-41182 MEDIUM

jQuery-UI is the official jQuery user interface library. Prior to version 1.13.0, accepting the value of the `altField` option of the Datepicker widget from untrusted sources may execute untrusted code. The issue is fixed in jQuery UI 1.13.0. Any string value passed to the `altField` option is now treated as a CSS selector. A workaround is to not accept the value of the `altField` option from untrusted sources.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.1 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N 2.8 2.7
security-advisories@github.com 6.5 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N 2.8 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,CWE-79,

Products Affected

Vendor Product Version
fedoraproject fedora 34
oracle banking_platform 2.12.0
tenable tenable.sc *
oracle communications_operations_monitor 5.0
netapp h410c_firmware -
oracle primavera_unifier 18.8
oracle hospitality_suite8 8.10.2
oracle primavera_unifier 17.9
oracle communications_interactive_session_recorder 6.4
fedoraproject fedora 36
netapp h300e_firmware -
fedoraproject fedora 35
oracle weblogic_server 12.2.1.3.0
oracle jd_edwards_enterpriseone_tools *
netapp h700s_firmware -
oracle primavera_unifier 21.12
oracle rest_data_services *
oracle primavera_unifier 17.10
oracle mysql_enterprise_monitor *
oracle primavera_unifier 17.12
oracle peoplesoft_enterprise_peopletools 8.58
oracle weblogic_server 12.2.1.4.0
oracle primavera_unifier *
oracle big_data_spatial_and_graph *
oracle primavera_unifier 17.11
oracle big_data_spatial_and_graph 23.1
netapp h300s_firmware -
oracle application_express *
oracle hospitality_inventory_management 9.1.0
debian debian_linux 9.0
fedoraproject fedora 33
netapp h410s_firmware -
oracle primavera_unifier 20.12
oracle communications_operations_monitor 4.4
oracle primavera_unifier 17.7
oracle agile_plm 9.3.6
oracle banking_platform 2.9.0
oracle primavera_unifier 17.8
netapp h500s_firmware -
oracle rest_data_services 22.1.1
oracle weblogic_server 14.1.1.0.0
drupal drupal *
oracle peoplesoft_enterprise_peopletools 8.59
netapp h700e_firmware -
oracle hospitality_materials_control 18.1
netapp h500e_firmware -
oracle primavera_unifier 19.12
jqueryui jquery_ui *
oracle hospitality_suite8 *
oracle policy_automation *
oracle communications_operations_monitor 4.3
CVE-2021-41183 MEDIUM

jQuery-UI is the official jQuery user interface library. Prior to version 1.13.0, accepting the value of various `*Text` options of the Datepicker widget from untrusted sources may execute untrusted code. The issue is fixed in jQuery UI 1.13.0. The values passed to various `*Text` options are now always treated as pure text, not HTML. A workaround is to not accept the value of the `*Text` options from untrusted sources.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.1 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N 2.8 2.7
security-advisories@github.com 6.5 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N 2.8 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,CWE-79,

Products Affected

Vendor Product Version
netapp h300s_firmware -
fedoraproject fedora 34
oracle application_express *
oracle primavera_gateway 19.12.0
oracle primavera_gateway *
oracle hospitality_inventory_management 9.1.0
debian debian_linux 9.0
fedoraproject fedora 33
netapp h410s_firmware -
oracle banking_platform 2.12.0
tenable tenable.sc *
oracle communications_operations_monitor 5.0
oracle communications_operations_monitor 4.4
netapp h410c_firmware -
oracle agile_plm 9.3.6
oracle banking_platform 2.9.0
netapp h500s_firmware -
oracle rest_data_services 22.1.1
oracle hospitality_suite8 8.10.2
oracle communications_interactive_session_recorder 6.4
oracle weblogic_server 14.1.1.0.0
oracle primavera_gateway 20.12.0
oracle primavera_gateway 21.12.0
fedoraproject fedora 36
drupal drupal *
netapp h300e_firmware -
oracle peoplesoft_enterprise_peopletools 8.59
netapp h700e_firmware -
fedoraproject fedora 35
oracle weblogic_server 12.2.1.3.0
netapp h500e_firmware -
oracle jd_edwards_enterpriseone_tools *
oracle primavera_gateway 18.8.0
netapp h700s_firmware -
oracle rest_data_services *
oracle mysql_enterprise_monitor *
jqueryui jquery_ui *
oracle peoplesoft_enterprise_peopletools 8.58
oracle weblogic_server 12.2.1.4.0
oracle hospitality_suite8 *
oracle policy_automation *
oracle big_data_spatial_and_graph *
oracle communications_operations_monitor 4.3
oracle big_data_spatial_and_graph 23.1
CVE-2021-41184 MEDIUM

jQuery-UI is the official jQuery user interface library. Prior to version 1.13.0, accepting the value of the `of` option of the `.position()` util from untrusted sources may execute untrusted code. The issue is fixed in jQuery UI 1.13.0. Any string value passed to the `of` option is now treated as a CSS selector. A workaround is to not accept the value of the `of` option from untrusted sources.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.1 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N 2.8 2.7
security-advisories@github.com 6.5 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N 2.8 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,CWE-79,

Products Affected

Vendor Product Version
netapp h300s_firmware -
fedoraproject fedora 34
oracle application_express *
oracle hospitality_inventory_management 9.1.0
fedoraproject fedora 33
netapp h410s_firmware -
oracle primavera_unifier 20.12
oracle banking_platform 2.12.0
tenable tenable.sc *
oracle communications_operations_monitor 5.0
oracle communications_operations_monitor 4.4
netapp h410c_firmware -
oracle agile_plm 9.3.6
oracle banking_platform 2.9.0
netapp h500s_firmware -
oracle rest_data_services 22.1.1
oracle primavera_unifier 18.8
oracle hospitality_suite8 8.10.2
oracle communications_interactive_session_recorder 6.4
oracle weblogic_server 14.1.1.0.0
fedoraproject fedora 36
drupal drupal *
netapp h300e_firmware -
oracle peoplesoft_enterprise_peopletools 8.59
netapp h700e_firmware -
fedoraproject fedora 35
oracle hospitality_materials_control 18.1
oracle weblogic_server 12.2.1.3.0
netapp h500e_firmware -
oracle jd_edwards_enterpriseone_tools *
oracle primavera_unifier 19.12
netapp h700s_firmware -
oracle primavera_unifier 21.12
oracle rest_data_services *
jqueryui jquery_ui *
oracle peoplesoft_enterprise_peopletools 8.58
oracle weblogic_server 12.2.1.4.0
oracle hospitality_suite8 *
oracle policy_automation *
oracle primavera_unifier *
oracle big_data_spatial_and_graph *
oracle communications_operations_monitor 4.3
oracle big_data_spatial_and_graph 23.1
CVE-2022-31160

jQuery UI is a curated set of user interface interactions, effects, widgets, and themes built on top of jQuery. Versions prior to 1.13.2 are potentially vulnerable to cross-site scripting. Initializing a checkboxradio widget on an input enclosed within a label makes that parent label contents considered as the input label. Calling `.checkboxradio( "refresh" )` on such a widget and the initial HTML contained encoded HTML entities will make them erroneously get decoded. This can lead to potentially executing JavaScript code. The bug has been patched in jQuery UI 1.13.2. To remediate the issue, someone who can change the initial HTML can wrap all the non-input contents of the `label` in a `span`.

Products Affected

Vendor Product Version
debian debian_linux 10.0
netapp h300s_firmware -
drupal jquery_ui_checkboxradio 8.x-1.3
netapp h700s_firmware -
netapp h410s_firmware -
jqueryui jquery_ui *
netapp h410c_firmware -
netapp oncommand_insight -
netapp h500s_firmware -
drupal jquery_ui_checkboxradio 8.x-1.2
fedoraproject fedora 37
drupal jquery_ui_checkboxradio 8.x-1.0
fedoraproject fedora 36
drupal jquery_ui_checkboxradio 8.x-1.1
fedoraproject fedora 35