CVE-2024-30875

EPSS 19.8%

發布日:2024/10/17修改日:2024/10/18

描述

Cross Site Scripting vulnerability in JavaScript Library jquery-ui v.1.13.1 allows a remote attacker to obtain sensitive information and execute arbitrary code via a crafted payload to the window.addEventListener component.

受影響套件(1)

Debian/jqueryuifrom 0

參考連結(2)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2024-30875
WEBhttps://github.com/Ant1sec-ops/CVE-2024-30875