CVE-2015-9521 (Medium) detected in jquery-1.9.1.min.js #9

mend-for-github-com · 2020-01-09T01:22:09Z

CVE-2015-9521 - Medium Severity Vulnerability

Vulnerable Library - jquery-1.9.1.min.js

JavaScript library for DOM operations

Library home page: https://cdnjs.cloudflare.com/ajax/libs/jquery/1.9.1/jquery.min.js

Path to dependency file: /tci-awesome/docs/themes/hugrid/layouts/partials/scripts.html

Path to vulnerable library: /tci-awesome/docs/themes/hugrid/layouts/partials/scripts.html

Dependency Hierarchy:

❌ jquery-1.9.1.min.js (Vulnerable Library)

Vulnerability Details

The Easy Digital Downloads (EDD) Pushover Notifications extension for WordPress, as used with EDD 1.8.x before 1.8.7, 1.9.x before 1.9.10, 2.0.x before 2.0.5, 2.1.x before 2.1.11, 2.2.x before 2.2.9, and 2.3.x before 2.3.7, has XSS because add_query_arg is misused.

Publish Date: 2019-10-23

URL: CVE-2015-9521

CVSS 2 Score Details (4.3)

Base Score Metrics not available

Suggested Fix

Type: Upgrade version

Origin: jquery/jquery@b078a62

Release Date: 2019-10-23

Fix Resolution: 2.2.0

The text was updated successfully, but these errors were encountered:

mend-for-github-com bot added the security vulnerability Security vulnerability detected by WhiteSource label Jan 9, 2020

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

CVE-2015-9521 (Medium) detected in jquery-1.9.1.min.js #9

CVE-2015-9521 (Medium) detected in jquery-1.9.1.min.js #9

mend-for-github-com bot commented Jan 9, 2020

CVE-2015-9521 (Medium) detected in jquery-1.9.1.min.js #9

CVE-2015-9521 (Medium) detected in jquery-1.9.1.min.js #9

Comments

mend-for-github-com bot commented Jan 9, 2020

CVE-2015-9521 - Medium Severity Vulnerability