CVE-2012-6708

MEDIUM

Jquery < 1.9.0 - XSS

Title source: rule

Description

jQuery before 1.9.0 is vulnerable to Cross-site Scripting (XSS) attacks. The jQuery(strInput) function does not differentiate selectors from HTML in a reliable fashion. In vulnerable versions, jQuery determined whether the input was HTML by looking for the '<' character anywhere in the string, giving attackers more flexibility when attempting to construct a malicious payload. In fixed versions, jQuery only deems the input to be HTML if it explicitly starts with the '<' character, limiting exploitability only to attackers who can control the beginning of a string, which is far less common.

Exploits (1)

exploitdb WRITEUP

by MiningOmerta · textwebappshardware

https://www.exploit-db.com/exploits/49708

View Code ZIP pw:eip

References (11)

[Mailing List] http://lists.opensuse.org/opensuse-security-announce/2020-03/msg00041.html

[Exploit, Third Party Advisory] http://packetstormsecurity.com/files/153237/RetireJS-CORS-Issue-Script-Execution.html

[Exploit, Third Party Advisory] http://packetstormsecurity.com/files/161972/Linksys-EA7500-2.0.8.194281-Cross-Site-Scripting.html

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/102792

[Exploit, Issue Tracking, Vendor Advisory] https://bugs.jquery.com/ticket/11290

[Patch, Third Party Advisory] https://github.com/jquery/jquery/commit/05531fc4080ae24070930d15ae0cea7ae056457d

[Third Party Advisory] https://help.ecostruxureit.com/display/public/UADCE725/Security+fixes+in+StruxureWare+Data+Center+Expert+v7.6.0

[Mailing List] https://lists.apache.org/thread.html/519eb0fd45642dcecd9ff74cb3e71c20a4753f7d82e2f07864b5108f%40%3Cdev.drill.apache.org%3E

[Mailing List] https://lists.apache.org/thread.html/b0656d359c7d40ec9f39c8cc61bca66802ef9a2a12ee199f5b0c1442%40%3Cdev.drill.apache.org%3E

[Mailing List] https://lists.apache.org/thread.html/f9bc3e55f4e28d1dcd1a69aae6d53e609a758e34d2869b4d798e13cc%40%3Cissues.drill.apache.org%3E

[Patch, Third Party Advisory] https://snyk.io/vuln/npm:jquery:20120206

Scores

CVSS v3 6.1

EPSS 0.0093

EPSS Percentile 75.8%

Attack Vector NETWORK

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Classification

CWE

CWE-79

Status published

Affected Products (5)

jquery/jquery < 1.9.0

npm/jquery < 1.9.0npm

org.webjars.npm/jquery < 1.9.0Maven

nuget/jQuery < 1.9.0NuGet

rubygems/jquery-rails < 2.2.0RubyGems

Timeline

Published Jan 18, 2018

Tracked Since Feb 18, 2026