Description

Cross-site scripting (XSS) vulnerability in jquery.ui.dialog.js in the Dialog widget in jQuery UI before 1.10.0 allows remote attackers to inject arbitrary web script or HTML via the title option.

Remediation

References

CVE-2010-5312

Related Vulnerabilities

Moodle Incorrect Permission Assignment for Critical Resource Vulnerability (CVE-2021-21809)

CKEditor Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-24815)

OpenSSL Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') Vulnerability (CVE-2022-3786)

Internet Information Services Other Vulnerability (CVE-2001-0004)

MySQL CVE-2022-21594 Vulnerability (CVE-2022-21594)

Severity

Medium

Classification

CVE-2010-5312 CWE-707

Tags

Missing Update Known Vulnerabilities