[GHSA-6c3j-c64m-qhgq] XSS in jQuery as used in Drupal, Backdrop CMS, and other products

github / advisory-database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

Creative Commons Attribution 4.0 International

1.75k stars 336 forks source link

[GHSA-6c3j-c64m-qhgq] XSS in jQuery as used in Drupal, Backdrop CMS, and other products #4982

Closed Rudloff closed 3 weeks ago

Rudloff commented 3 weeks ago

Updates

Affected products
References

Comments This vulnerability also applies to debugbar (which contains a copy of jQuery)

JonathanLEvans commented 3 weeks ago

Hi @Rudloff, could you provide a reference link from debugbar confirming the fix?

Rudloff commented 3 weeks ago

This was mentioned in https://github.com/maximebf/php-debugbar/issues/447 and fixed in https://github.com/maximebf/php-debugbar/commit/847216e60544258c881f2733d699bbcfeefac0fc

advisory-database[bot] commented 3 weeks ago

Hi @Rudloff! Thank you so much for contributing to the GitHub Advisory Database. This database is free, open, and accessible to all, and it's people like you who make it great. Thanks for choosing to help others. We hope you send in more contributions in the future!