1. Home
  2. Vulnerabilities
  3. CVE-2016-7103

CVE-2016-7103

CVSS v3.1 6.1 (Medium)
61% Progress
CVSS v2.0 4.3 (Medium)
43% Progress
EPSS 0.47 % (76th)
0.47% Progress
Affected Products 13
Advisories 12
Info CVSS EPSS CAPEC Affected Configurations References Security Advisories Packages & Software OVAL Tools, Exploits & PoC Graph Web & Social Timeline

Cross-site scripting (XSS) vulnerability in jQuery UI before 1.12.0 might allow remote attackers to inject arbitrary web script or HTML via the closeText parameter of the dialog function.

Weaknesses
CWE-79
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
CVE Status
PUBLISHED
CNA
MITRE
Published Date
2017-03-15 16:59:00
(7 years ago)
Updated Date
2023-06-22 19:50:11
(15 months ago)

Affected Products

Debian

Fedoraproject

Jqueryui

Juniper

Netapp

Oracle

Redhat

Configuration #1

    CPE23 From Up To
  Jqueryui Jquery Ui from 1.10.0 version and 1.11.4 and prior versions cpe:2.3:a:jqueryui:jquery_ui >= 1.10.0 <= 1.11.4

Configuration #2

    CPE23 From Up To
  Oracle Application Express prior 19.1 version cpe:2.3:a:oracle:application_express < 19.1
  Oracle Business Intelligence 12.2.1.3.0 cpe:2.3:a:oracle:business_intelligence:12.2.1.3.0:*:*:*:enterprise
  Oracle Business Intelligence 12.2.1.4.0 cpe:2.3:a:oracle:business_intelligence:12.2.1.4.0:*:*:*:enterprise
  Oracle Hospitality Cruise Fleet Management 9.0.11 cpe:2.3:a:oracle:hospitality_cruise_fleet_management:9.0.11
  Oracle Oss Support Tools prior 2.12.42 version cpe:2.3:a:oracle:oss_support_tools < 2.12.42
  Oracle Oss Support Tools 2.12.42 cpe:2.3:a:oracle:oss_support_tools:2.12.42
  Oracle Primavera Unifier from 16.0 version and 16.2 and prior versions cpe:2.3:a:oracle:primavera_unifier >= 16.0 <= 16.2
  Oracle Primavera Unifier from 17.0 version and 17.12.4 and prior versions cpe:2.3:a:oracle:primavera_unifier >= 17.0 <= 17.12.4
  Oracle Primavera Unifier from 18.0 version and 18.8.4 and prior versions cpe:2.3:a:oracle:primavera_unifier >= 18.0 <= 18.8.4
  Oracle Siebel Ui Framework 21.2 and prior versions cpe:2.3:a:oracle:siebel_ui_framework <= 21.2
  Oracle Weblogic Server 10.3.6.0.0 cpe:2.3:a:oracle:weblogic_server:10.3.6.0.0
  Oracle Weblogic Server 12.1.3.0.0 cpe:2.3:a:oracle:weblogic_server:12.1.3.0.0
  Oracle Weblogic Server 12.2.1.3.0 cpe:2.3:a:oracle:weblogic_server:12.2.1.3.0

Configuration #3

    CPE23 From Up To
  Fedoraproject Fedora 30 cpe:2.3:o:fedoraproject:fedora:30
  Fedoraproject Fedora 35 cpe:2.3:o:fedoraproject:fedora:35
  Fedoraproject Fedora 36 cpe:2.3:o:fedoraproject:fedora:36

Configuration #4

    CPE23 From Up To
  Netapp Snapcenter cpe:2.3:a:netapp:snapcenter:-

Configuration #5

    CPE23 From Up To
  Redhat Openstack 7.0 cpe:2.3:a:redhat:openstack:7.0
  Redhat Openstack 8 cpe:2.3:a:redhat:openstack:8
  Redhat Openstack 9 cpe:2.3:a:redhat:openstack:9

Configuration #6

    CPE23 From Up To
  Juniper Junos 21.2 cpe:2.3:o:juniper:junos:21.2:-

Configuration #7

    CPE23 From Up To
  Debian Linux 9.0 cpe:2.3:o:debian:debian_linux:9.0