UBUNTU-CVE-2010-5312

See a problem?

Source

https://ubuntu.com/security/notices/UBUNTU-CVE-2010-5312

Import Source

https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2010/UBUNTU-CVE-2010-5312.json

JSON Data

https://api.osv.dev/v1/vulns/UBUNTU-CVE-2010-5312

Related

CVE-2010-5312

Published

2014-11-24T16:59:00Z

Modified

2014-11-24T16:59:00Z

Severity

6.1 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N CVSS Calculator

Summary

[none]

Details

Cross-site scripting (XSS) vulnerability in jquery.ui.dialog.js in the Dialog widget in jQuery UI before 1.10.0 allows remote attackers to inject arbitrary web script or HTML via the title option.

References

Affected packages

Ubuntu:14.04:LTS / jqueryui

Package

Name: jqueryui
Purl: pkg:deb/ubuntu/jqueryui@1.10.1+dfsg-1?arch=src?distro=trusty

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1.10.1+dfsg-1

Ecosystem specific

{
    "availability": "No subscription required",
    "ubuntu_priority": "medium",
    "binaries": [
        {
            "libjs-jquery-ui": "1.10.1+dfsg-1",
            "libjs-jquery-ui-docs": "1.10.1+dfsg-1"
        }
    ]
}

Ubuntu:16.04:LTS / jqueryui

Package

Name: jqueryui
Purl: pkg:deb/ubuntu/jqueryui@1.10.1+dfsg-1?arch=src?distro=xenial

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1.10.1+dfsg-1

Ecosystem specific

{
    "availability": "No subscription required",
    "ubuntu_priority": "medium",
    "binaries": [
        {
            "libjs-jquery-ui": "1.10.1+dfsg-1",
            "libjs-jquery-ui-docs": "1.10.1+dfsg-1"
        }
    ]
}