jQuery-UI is the official jQuery user interface library. Prior to version 1.13.0, accepting the value of various `*Text` options of the Datepicker widget from untrusted sources may execute untrusted code. The issue is fixed in jQuery UI 1.13.0. The values passed to various `*Text` options are now always treated as pure text, not HTML. A workaround is to not accept the value of the `*Text` options from untrusted sources.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
jqueryui jquery ui |
||
fedoraproject fedora 33 |
||
fedoraproject fedora 34 |
||
fedoraproject fedora 35 |
||
fedoraproject fedora 36 |
||
netapp h300s firmware - |
||
netapp h500s firmware - |
||
netapp h700s firmware - |
||
netapp h300e firmware - |
||
netapp h500e firmware - |
||
netapp h700e firmware - |
||
netapp h410s firmware - |
||
netapp h410c firmware - |
||
debian debian linux 9.0 |
||
drupal drupal |
||
oracle agile plm 9.3.6 |
||
oracle application express |
||
oracle banking platform 2.9.0 |
||
oracle banking platform 2.12.0 |
||
oracle big data spatial and graph |
||
oracle big data spatial and graph 23.1 |
||
oracle communications interactive session recorder 6.4 |
||
oracle communications operations monitor 4.3 |
||
oracle communications operations monitor 4.4 |
||
oracle communications operations monitor 5.0 |
||
oracle hospitality inventory management 9.1.0 |
||
oracle hospitality suite8 |
||
oracle hospitality suite8 8.10.2 |
||
oracle jd edwards enterpriseone tools |
||
oracle mysql enterprise monitor |
||
oracle peoplesoft enterprise peopletools 8.58 |
||
oracle peoplesoft enterprise peopletools 8.59 |
||
oracle policy automation |
||
oracle primavera gateway |
||
oracle primavera gateway 18.8.0 |
||
oracle primavera gateway 19.12.0 |
||
oracle primavera gateway 20.12.0 |
||
oracle primavera gateway 21.12.0 |
||
oracle rest data services |
||
oracle rest data services 22.1.1 |
||
oracle weblogic server 12.2.1.3.0 |
||
oracle weblogic server 12.2.1.4.0 |
||
oracle weblogic server 14.1.1.0.0 |
||
tenable tenable.sc |