Description

Cross-site scripting (XSS) vulnerability in jquery.ui.dialog.js in the Dialog widget in jQuery UI before 1.10.0 allows remote attackers to inject arbitrary web script or HTML via the title option.

Remediation

References

CVE-2010-5312

Related Vulnerabilities

Jboss EAP Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2023-5379)

Drupal Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2017-6926)

Jenkins Incorrect Authorization Vulnerability (CVE-2021-21609)

Dot CMS Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-37431)

WordPress Plugin Easy Forms for MailChimp Cross-Site Scripting (6.1.2)

Severity

Medium

Classification

CVE-2010-5312 CWE-707

Tags

Missing Update Known Vulnerabilities