CVE-2021-41182

MEDIUM6.5EPSS 22.3%

XSS in the `altField` option of the Datepicker widget in jquery-ui

發布日:2021/10/26修改日:2026/3/13

也稱為:GHSA-9gj3-hwp5-pmwcBIT-drupal-2021-41182DEBIAN-CVE-2021-41182DEBIAN-CVE-2021-41183DEBIAN-CVE-2021-41184DEBIAN-CVE-2022-31160DLA-3230-1

描述

### Impact Accepting the value of the `altField` option of the Datepicker widget from untrusted sources may execute untrusted code. For example, initializing the datepicker in the following way: ```js $( "#datepicker" ).datepicker( { altField: "<img onerror='doEvilThing()' src='/404' />", } ); ``` will call the `doEvilThing` function. ### Patches The issue is fixed in jQuery UI 1.13.0. Any string value passed to the `altField` option is now treated as a CSS selector. ### Workarounds A workaround is to not accept the value of the `altField` option from untrusted sources. ### For more information If you have any questions or comments about this advisory, search for a relevant issue in [the jQuery UI repo](https://github.com/jquery/jquery-ui/issues). If you don't find an answer, open a new issue.

受影響套件(8)

Bitnami/drupal>= 7.0.0, < 7.86.0
Debian/jqueryuifrom 0, < 1.12.1+dfsg-8+deb11u1
Debian/jqueryuifrom 0, < 1.12.1+dfsg-5+deb10u1
Debian/otrs2from 0
Maven/org.webjars.npm:jquery-uifrom 0, < 1.13.0
npm/jquery-uifrom 0, < 1.13.0
NuGet/jQuery.UI.Combinedfrom 0, < 1.13.0
RubyGems/jquery-ui-railsfrom 0, < 7.0.0

CVSS 分數

來源	版本	嚴重程度	向量
osv	CVSS 3.1	MEDIUM6.5	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N

描述

受影響套件(8)

CVSS 分數

參考連結(32)