pkg:maven/org.webjars.npm/jquery-ui
Type
maven
Namespace
org.webjars.npm
Name
jquery-ui
Known advisories, vulnerabilities and fixes for org.webjars.npm/jquery-ui package.
High
1
Moderate
7
| Type | Version | Distribution | # CVEs | # Advisory ID | Title | Severity | Published |
|---|---|---|---|---|---|---|---|
| Affected | < 1.13.0 |
CVE-2021-41182
|
 MAVEN:GHSA-9GJ3-HWP5-PMWC
|
XSS in the `altField` option of the Datepicker widget in jquery-ui | moderate |
2021-10-26T14:55:02
(2 years ago) |
|
| Fixed | = 1.13.0 |
CVE-2021-41182
|
MAVEN:GHSA-9GJ3-HWP5-PMWC
|
XSS in the `altField` option of the Datepicker widget in jquery-ui | moderate |
2021-10-26T14:55:02
(2 years ago) |
|
| Affected | < 1.12.0 |
MAVEN:GHSA-G8Q2-24JH-5HPC
|
High severity vulnerability that affects jquery-ui | high |
2018-07-27T14:47:52
(6 years ago) |
||
| Fixed | = 1.12.0 |
MAVEN:GHSA-G8Q2-24JH-5HPC
|
High severity vulnerability that affects jquery-ui | high |
2018-07-27T14:47:52
(6 years ago) |
||
| Affected | < 1.13.0 |
CVE-2021-41184
|
MAVEN:GHSA-GPQQ-952Q-5327
|
XSS in the `of` option of the `.position()` util in jquery-ui | moderate |
2021-10-26T14:55:12
(2 years ago) |
|
| Fixed | = 1.13.0 |
CVE-2021-41184
|
MAVEN:GHSA-GPQQ-952Q-5327
|
XSS in the `of` option of the `.position()` util in jquery-ui | moderate |
2021-10-26T14:55:12
(2 years ago) |
|
| Affected | < 1.13.2 |
CVE-2022-31160
|
MAVEN:GHSA-H6GJ-6JJQ-H8G9
|
jQuery UI vulnerable to XSS when refreshing a checkboxradio with an HTML-like initial text label | moderate |
2022-07-18T17:07:36
(2 years ago) |
|
| Fixed | = 1.13.2 |
CVE-2022-31160
|
MAVEN:GHSA-H6GJ-6JJQ-H8G9
|
jQuery UI vulnerable to XSS when refreshing a checkboxradio with an HTML-like initial text label | moderate |
2022-07-18T17:07:36
(2 years ago) |
|
| Affected | < 1.12.0 |
CVE-2016-7103
|
MAVEN:GHSA-HPCF-8VF9-Q4GJ
|
jQuery-UI vulnerable to Cross-site Scripting in dialog closeText | moderate |
2017-10-24T18:33:35
(6 years ago) |
|
| Fixed | = 1.12.0 |
CVE-2016-7103
|
MAVEN:GHSA-HPCF-8VF9-Q4GJ
|
jQuery-UI vulnerable to Cross-site Scripting in dialog closeText | moderate |
2017-10-24T18:33:35
(6 years ago) |
|
| Affected | < 1.13.0 |
CVE-2021-41183
|
MAVEN:GHSA-J7QV-PGF6-HVH4
|
XSS in `*Text` options of the Datepicker widget in jquery-ui | moderate |
2021-10-26T14:55:21
(2 years ago) |
|
| Fixed | = 1.13.0 |
CVE-2021-41183
|
MAVEN:GHSA-J7QV-PGF6-HVH4
|
XSS in `*Text` options of the Datepicker widget in jquery-ui | moderate |
2021-10-26T14:55:21
(2 years ago) |
|
| Affected | < 1.10.0 |
CVE-2012-6662
|
MAVEN:GHSA-QQXP-XP9V-VVX6
|
jquery-ui Tooltip widget vulnerable to XSS | moderate |
2017-10-24T18:33:37
(6 years ago) |
|
| Fixed | = 1.10.0 |
CVE-2012-6662
|
MAVEN:GHSA-QQXP-XP9V-VVX6
|
jquery-ui Tooltip widget vulnerable to XSS | moderate |
2017-10-24T18:33:37
(6 years ago) |
|
| Affected | >= 1.7.0, < 1.10.0 |
CVE-2010-5312
|
MAVEN:GHSA-WCM2-9C89-WMFM
|
Cross-site Scripting in jquery-ui | moderate |
2017-10-24T18:33:38
(6 years ago) |
|
| Fixed | = 1.10.0 |
CVE-2010-5312
|
MAVEN:GHSA-WCM2-9C89-WMFM
|
Cross-site Scripting in jquery-ui | moderate |
2017-10-24T18:33:38
(6 years ago) |