Medium severity6.9NVD Advisory· Published Apr 29, 2020· Updated Apr 13, 2026
CVE-2020-11022
CVE-2020-11022
Description
In jQuery starting with 1.12.0 and before 3.5.0, passing HTML from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. .html(), .append(), and others) may execute untrusted code. This problem is patched in jQuery 3.5.0.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
jquerynpm | >= 1.12.0, < 3.5.0 | 3.5.0 |
jqueryNuGet | >= 1.12.0, < 3.5.0 | 3.5.0 |
jquery-railsRubyGems | < 4.4.0 | 4.4.0 |
org.webjars.npm:jqueryMaven | >= 1.12.0, < 3.5.0 | 3.5.0 |
maximebf/debugbarPackagist | < 1.19.0 | 1.19.0 |
athlon1600/youtube-downloaderPackagist | <= 4.0.0 | — |
components/jqueryPackagist | >= 1.12.0, < 3.5.0 | 3.5.0 |
Affected products
236- cpe:2.3:a:netapp:oncommand_insight:-:*:*:*:*:*:*:*
- cpe:2.3:a:netapp:oncommand_system_manager:*:*:*:*:*:*:*:*Range: >=3.0,<=3.1.3
- cpe:2.3:a:netapp:snapcenter:-:*:*:*:*:*:*:*
- cpe:2.3:a:netapp:snap_creator_framework:-:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:agile_product_lifecycle_management_for_process:6.2.0.0:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:agile_product_supplier_collaboration_for_process:6.2.0.0:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:application_testing_suite:13.3.0.1:*:*:*:*:*:*:*
cpe:2.3:a:oracle:banking_digital_experience:*:*:*:*:*:*:*:*+ 6 more
- cpe:2.3:a:oracle:banking_digital_experience:*:*:*:*:*:*:*:*range: >=18.1,<=20.1
- cpe:2.3:a:oracle:banking_digital_experience:18.1:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:banking_digital_experience:18.2:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:banking_digital_experience:18.3:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:banking_digital_experience:19.1:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:banking_digital_experience:19.2:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:banking_digital_experience:20.1:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:blockchain_platform:*:*:*:*:*:*:*:*Range: <21.1.2
- cpe:2.3:a:oracle:communications_application_session_controller:3.8m0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:communications_billing_and_revenue_management:12.0.0.3.0:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:oracle:communications_billing_and_revenue_management:12.0.0.3.0:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:communications_billing_and_revenue_management:7.5.0.23.0:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:communications_diameter_signaling_router_idih\::*:*:*:*:*:*:*:*Range: >=8.0.0,<=8.2.2
- cpe:2.3:a:oracle:communications_eagle_application_processor:*:*:*:*:*:*:*:*Range: >=16.1.0,<=16.4.0
- cpe:2.3:a:oracle:communications_services_gatekeeper:7.0:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:communications_webrtc_session_controller:7.2:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:enterprise_manager_ops_center:12.4.0.0:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:enterprise_session_border_controller:8.4:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:financial_services_analytical_applications_infrastructure:*:*:*:*:*:*:*:*Range: >=8.0.6.0.0,<=8.1.0.0.0
cpe:2.3:a:oracle:financial_services_analytical_applications_reconciliation_framework:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:oracle:financial_services_analytical_applications_reconciliation_framework:*:*:*:*:*:*:*:*range: >=8.0.6,<=8.0.8
- cpe:2.3:a:oracle:financial_services_analytical_applications_reconciliation_framework:8.1.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:financial_services_asset_liability_management:8.0.6:*:*:*:*:*:*:*+ 2 more
- cpe:2.3:a:oracle:financial_services_asset_liability_management:8.0.6:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:financial_services_asset_liability_management:8.0.7:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:financial_services_asset_liability_management:8.1.0:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:financial_services_balance_sheet_planning:8.0.8:*:*:*:*:*:*:*
cpe:2.3:a:oracle:financial_services_basel_regulatory_capital_basic:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:oracle:financial_services_basel_regulatory_capital_basic:*:*:*:*:*:*:*:*range: >=8.0.6,<=8.0.8
- cpe:2.3:a:oracle:financial_services_basel_regulatory_capital_basic:8.1.0:*:*:*:*:*:*:*
- Oracle Corporation/Financial Services Basel Regulatory Capital Internal Ratings Based Approach2 versions
cpe:2.3:a:oracle:financial_services_basel_regulatory_capital_internal_ratings_based_approach:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:oracle:financial_services_basel_regulatory_capital_internal_ratings_based_approach:*:*:*:*:*:*:*:*range: >=8.0.6,<=8.0.8
- cpe:2.3:a:oracle:financial_services_basel_regulatory_capital_internal_ratings_based_approach:8.1.0:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:financial_services_data_foundation:*:*:*:*:*:*:*:*Range: >=8.0.6,<=8.1.0
- cpe:2.3:a:oracle:financial_services_data_governance_for_us_regulatory_reporting:*:*:*:*:*:*:*:*Range: >=8.0.6,<=8.0.9
cpe:2.3:a:oracle:financial_services_data_integration_hub:8.0.6:*:*:*:*:*:*:*+ 2 more
- cpe:2.3:a:oracle:financial_services_data_integration_hub:8.0.6:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:financial_services_data_integration_hub:8.0.7:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:financial_services_data_integration_hub:8.1.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:financial_services_funds_transfer_pricing:8.0.6:*:*:*:*:*:*:*+ 2 more
- cpe:2.3:a:oracle:financial_services_funds_transfer_pricing:8.0.6:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:financial_services_funds_transfer_pricing:8.0.7:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:financial_services_funds_transfer_pricing:8.1.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:financial_services_hedge_management_and_ifrs_valuations:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:oracle:financial_services_hedge_management_and_ifrs_valuations:*:*:*:*:*:*:*:*range: >=8.0.6,<=8.0.8
- cpe:2.3:a:oracle:financial_services_hedge_management_and_ifrs_valuations:8.1.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:financial_services_institutional_performance_analytics:8.0.6:*:*:*:*:*:*:*+ 2 more
- cpe:2.3:a:oracle:financial_services_institutional_performance_analytics:8.0.6:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:financial_services_institutional_performance_analytics:8.0.7:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:financial_services_institutional_performance_analytics:8.1.0:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:financial_services_liquidity_risk_management:8.0.6:*:*:*:*:*:*:*
cpe:2.3:a:oracle:financial_services_liquidity_risk_measurement_and_management:8.0.7:*:*:*:*:*:*:*+ 2 more
- cpe:2.3:a:oracle:financial_services_liquidity_risk_measurement_and_management:8.0.7:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:financial_services_liquidity_risk_measurement_and_management:8.0.8:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:financial_services_liquidity_risk_measurement_and_management:8.1.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:financial_services_loan_loss_forecasting_and_provisioning:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:oracle:financial_services_loan_loss_forecasting_and_provisioning:*:*:*:*:*:*:*:*range: >=8.0.6,<=8.0.8
- cpe:2.3:a:oracle:financial_services_loan_loss_forecasting_and_provisioning:8.1.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:financial_services_market_risk_measurement_and_management:8.0.6:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:oracle:financial_services_market_risk_measurement_and_management:8.0.6:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:financial_services_market_risk_measurement_and_management:8.0.8:*:*:*:*:*:*:*
cpe:2.3:a:oracle:financial_services_price_creation_and_discovery:8.0.6:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:oracle:financial_services_price_creation_and_discovery:8.0.6:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:financial_services_price_creation_and_discovery:8.0.7:*:*:*:*:*:*:*
cpe:2.3:a:oracle:financial_services_profitability_management:8.0.6:*:*:*:*:*:*:*+ 2 more
- cpe:2.3:a:oracle:financial_services_profitability_management:8.0.6:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:financial_services_profitability_management:8.0.7:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:financial_services_profitability_management:8.1.0:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:financial_services_regulatory_reporting_for_european_banking_authority:*:*:*:*:*:*:*:*Range: >=8.0.6,<=8.1.0
- cpe:2.3:a:oracle:financial_services_regulatory_reporting_for_us_federal_reserve:*:*:*:*:*:*:*:*Range: >=8.0.6,<=8.0.9
cpe:2.3:a:oracle:healthcare_foundation:7.1.1:*:*:*:*:*:*:*+ 3 more
- cpe:2.3:a:oracle:healthcare_foundation:7.1.1:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:healthcare_foundation:7.2.0:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:healthcare_foundation:7.2.1:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:healthcare_foundation:7.3.0:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:hospitality_materials_control:18.1:*:*:*:*:*:*:*
cpe:2.3:a:oracle:hospitality_simphony:*:*:*:*:*:*:*:*+ 3 more
- cpe:2.3:a:oracle:hospitality_simphony:*:*:*:*:*:*:*:*range: >=19.1.0,<=19.1.2
- cpe:2.3:a:oracle:hospitality_simphony:18.1:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:hospitality_simphony:18.2:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:hospitality_simphony:19.1.0-19.1.2:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:insurance_accounting_analyzer:8.0.9:*:*:*:*:*:*:*
cpe:2.3:a:oracle:insurance_allocation_manager_for_enterprise_profitability:8.0.8:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:oracle:insurance_allocation_manager_for_enterprise_profitability:8.0.8:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:insurance_allocation_manager_for_enterprise_profitability:8.1.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:insurance_data_foundation:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:oracle:insurance_data_foundation:*:*:*:*:*:*:*:*range: >=8.0.6,<=8.1.0
- cpe:2.3:a:oracle:insurance_data_foundation:8.0.6-8.1.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:insurance_insbridge_rating_and_underwriting:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:oracle:insurance_insbridge_rating_and_underwriting:*:*:*:*:*:*:*:*range: >=5.0.0.0,<=5.6.0.0
- cpe:2.3:a:oracle:insurance_insbridge_rating_and_underwriting:5.6.1.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:jdeveloper:11.1.1.9.0:*:*:*:*:*:*:*+ 2 more
- cpe:2.3:a:oracle:jdeveloper:11.1.1.9.0:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:jdeveloper:12.2.1.3.0:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:jdeveloper:12.2.1.4.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:peoplesoft_enterprise_peopletools:8.56:*:*:*:*:*:*:*+ 2 more
- cpe:2.3:a:oracle:peoplesoft_enterprise_peopletools:8.56:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:peoplesoft_enterprise_peopletools:8.57:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:peoplesoft_enterprise_peopletools:8.58:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:policy_automation:*:*:*:*:*:*:*:*Range: >=12.2.0,<=12.2.20
- cpe:2.3:a:oracle:policy_automation_connector_for_siebel:10.4.6:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:policy_automation_for_mobile_devices:*:*:*:*:*:*:*:*Range: >=12.2.0,<=12.2.20
cpe:2.3:a:oracle:retail_back_office:14.0:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:oracle:retail_back_office:14.0:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:retail_back_office:14.1:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:retail_customer_management_and_segmentation_foundation:19.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:retail_returns_management:14.0:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:oracle:retail_returns_management:14.0:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:retail_returns_management:14.1:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:siebel_ui_framework:20.8:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:storagetek_acsls:8.5.1:*:*:*:*:*:*:*
cpe:2.3:a:oracle:weblogic_server:10.3.6.0.0:*:*:*:*:*:*:*+ 4 more
- cpe:2.3:a:oracle:weblogic_server:10.3.6.0.0:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:weblogic_server:12.1.3.0.0:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:weblogic_server:12.2.1.3.0:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:weblogic_server:12.2.1.4.0:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:weblogic_server:14.1.1.0.0:*:*:*:*:*:*:*
cpe:2.3:o:fedoraproject:fedora:31:*:*:*:*:*:*:*+ 2 more
- cpe:2.3:o:fedoraproject:fedora:31:*:*:*:*:*:*:*
- cpe:2.3:o:fedoraproject:fedora:32:*:*:*:*:*:*:*
- cpe:2.3:o:fedoraproject:fedora:33:*:*:*:*:*:*:*
- cpe:2.3:o:netapp:h300e_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:netapp:h300s_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:netapp:h410c_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:netapp:h410s_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:netapp:h500e_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:netapp:h500s_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:netapp:h700e_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:netapp:h700s_firmware:-:*:*:*:*:*:*:*
- osv-coords118 versionspkg:apk/chainguard/keycloak-26.6pkg:apk/wolfi/keycloak-26.6pkg:bitnami/drupalpkg:composer/athlon1600/youtube-downloaderpkg:composer/components/jquerypkg:composer/maximebf/debugbarpkg:gem/jquery-railspkg:maven/org.webjars.npm/jquerypkg:npm/jquerypkg:nuget/jquerypkg:rpm/almalinux/custodiapkg:rpm/almalinux/python3-custodiapkg:rpm/almalinux/python3-jwcryptopkg:rpm/almalinux/python3-kdcproxypkg:rpm/almalinux/python3-pyusbpkg:rpm/almalinux/python3-qrcodepkg:rpm/almalinux/python3-qrcode-corepkg:rpm/almalinux/python3-yubicopkg:rpm/opensuse/cacti&distro=openSUSE%20Leap%2015.1pkg:rpm/opensuse/cacti&distro=openSUSE%20Leap%2015.2pkg:rpm/opensuse/cacti&distro=openSUSE%20Tumbleweedpkg:rpm/opensuse/cacti-spine&distro=openSUSE%20Leap%2015.1pkg:rpm/opensuse/cacti-spine&distro=openSUSE%20Leap%2015.2pkg:rpm/opensuse/otrs&distro=openSUSE%20Leap%2015.1pkg:rpm/opensuse/otrs&distro=openSUSE%20Leap%2015.2pkg:rpm/opensuse/syncthing&distro=openSUSE%20Tumbleweedpkg:rpm/suse/bind-formula&distro=SUSE%20Manager%20Server%203.2pkg:rpm/suse/branch-network-formula&distro=SUSE%20Manager%20Server%203.2pkg:rpm/suse/cacti&distro=SUSE%20Package%20Hub%2012pkg:rpm/suse/cacti&distro=SUSE%20Package%20Hub%2015%20SP1pkg:rpm/suse/cacti-spine&distro=SUSE%20Package%20Hub%2012pkg:rpm/suse/cacti-spine&distro=SUSE%20Package%20Hub%2015%20SP1pkg:rpm/suse/cobbler&distro=SUSE%20Manager%20Server%20Module%204.1pkg:rpm/suse/golang-github-QubitProducts-exporter_exporter&distro=SUSE%20Manager%20Proxy%20Module%204.1pkg:rpm/suse/golang-github-QubitProducts-exporter_exporter&distro=SUSE%20Manager%20Server%20Module%204.1pkg:rpm/suse/google-gson&distro=SUSE%20Manager%20Server%20Module%204.1pkg:rpm/suse/hibernate5&distro=SUSE%20Manager%20Server%20Module%204.0pkg:rpm/suse/httpcomponents-client&distro=SUSE%20Manager%20Server%20Module%204.1pkg:rpm/suse/httpcomponents-core&distro=SUSE%20Manager%20Server%20Module%204.1pkg:rpm/suse/ical4j&distro=SUSE%20Manager%20Server%20Module%204.1pkg:rpm/suse/image-sync-formula&distro=SUSE%20Manager%20Server%20Module%204.0pkg:rpm/suse/image-sync-formula&distro=SUSE%20Manager%20Server%20Module%204.1pkg:rpm/suse/mgr-libmod&distro=SUSE%20Manager%20Server%20Module%204.1pkg:rpm/suse/mgr-osad&distro=SUSE%20Manager%20Proxy%20Module%204.1pkg:rpm/suse/mgr-osad&distro=SUSE%20Manager%20Server%20Module%204.1pkg:rpm/suse/openvpn-formula&distro=SUSE%20Manager%20Server%20Module%204.0pkg:rpm/suse/openvpn-formula&distro=SUSE%20Manager%20Server%20Module%204.1pkg:rpm/suse/otrs&distro=SUSE%20Package%20Hub%2015%20SP1pkg:rpm/suse/otrs&distro=SUSE%20Package%20Hub%2015%20SP2pkg:rpm/suse/patterns-suse-manager&distro=SUSE%20Manager%20Proxy%20Module%204.1pkg:rpm/suse/patterns-suse-manager&distro=SUSE%20Manager%20Server%20Module%204.1pkg:rpm/suse/prometheus-exporters-formula&distro=SUSE%20Manager%20Server%20Module%204.0pkg:rpm/suse/prometheus-exporters-formula&distro=SUSE%20Manager%20Server%20Module%204.1pkg:rpm/suse/pxe-default-image-sle15&distro=SUSE%20Manager%20Server%20Module%204.1pkg:rpm/suse/py26-compat-salt&distro=SUSE%20Manager%20Server%203.2pkg:rpm/suse/python-susemanager-retail&distro=SUSE%20Manager%20Server%203.2pkg:rpm/suse/release-notes-susemanager&distro=SUSE%20Manager%20Server%203.2pkg:rpm/suse/release-notes-susemanager-proxy&distro=SUSE%20Manager%20Proxy%203.2pkg:rpm/suse/saltboot-formula&distro=SUSE%20Manager%20Server%20Module%204.0pkg:rpm/suse/saltboot-formula&distro=SUSE%20Manager%20Server%20Module%204.1pkg:rpm/suse/salt-netapi-client&distro=SUSE%20Manager%20Server%20Module%204.0pkg:rpm/suse/spacecmd&distro=SUSE%20Manager%20Proxy%20Module%204.0pkg:rpm/suse/spacecmd&distro=SUSE%20Manager%20Proxy%20Module%204.1pkg:rpm/suse/spacecmd&distro=SUSE%20Manager%20Server%20Module%204.0pkg:rpm/suse/spacecmd&distro=SUSE%20Manager%20Server%20Module%204.1pkg:rpm/suse/spacewalk-admin&distro=SUSE%20Manager%20Server%20Module%204.0pkg:rpm/suse/spacewalk-backend&distro=SUSE%20Manager%20Proxy%203.2pkg:rpm/suse/spacewalk-backend&distro=SUSE%20Manager%20Proxy%20Module%204.1pkg:rpm/suse/spacewalk-backend&distro=SUSE%20Manager%20Server%203.2pkg:rpm/suse/spacewalk-backend&distro=SUSE%20Manager%20Server%20Module%204.1pkg:rpm/suse/spacewalk-branding&distro=SUSE%20Manager%20Server%20Module%204.1pkg:rpm/suse/spacewalk-certs-tools&distro=SUSE%20Manager%20Proxy%20Module%204.0pkg:rpm/suse/spacewalk-certs-tools&distro=SUSE%20Manager%20Proxy%20Module%204.1pkg:rpm/suse/spacewalk-certs-tools&distro=SUSE%20Manager%20Server%20Module%204.0pkg:rpm/suse/spacewalk-certs-tools&distro=SUSE%20Manager%20Server%20Module%204.1pkg:rpm/suse/spacewalk-client-tools&distro=SUSE%20Manager%20Proxy%203.2pkg:rpm/suse/spacewalk-client-tools&distro=SUSE%20Manager%20Server%203.2pkg:rpm/suse/spacewalk-java&distro=SUSE%20Manager%20Server%203.2pkg:rpm/suse/spacewalk-java&distro=SUSE%20Manager%20Server%20Module%204.0pkg:rpm/suse/spacewalk-java&distro=SUSE%20Manager%20Server%20Module%204.1pkg:rpm/suse/spacewalk-proxy&distro=SUSE%20Manager%20Proxy%20Module%204.0pkg:rpm/suse/spacewalk-proxy&distro=SUSE%20Manager%20Proxy%20Module%204.1pkg:rpm/suse/spacewalk-proxy-installer&distro=SUSE%20Manager%20Proxy%203.2pkg:rpm/suse/spacewalk-setup&distro=SUSE%20Manager%20Server%20Module%204.0pkg:rpm/suse/spacewalk-utils&distro=SUSE%20Manager%20Server%203.2pkg:rpm/suse/spacewalk-utils&distro=SUSE%20Manager%20Server%20Module%204.0pkg:rpm/suse/spacewalk-utils&distro=SUSE%20Manager%20Server%20Module%204.1pkg:rpm/suse/spacewalk-web&distro=SUSE%20Manager%20Proxy%203.2pkg:rpm/suse/spacewalk-web&distro=SUSE%20Manager%20Proxy%20Module%204.0pkg:rpm/suse/spacewalk-web&distro=SUSE%20Manager%20Proxy%20Module%204.1pkg:rpm/suse/spacewalk-web&distro=SUSE%20Manager%20Server%203.2pkg:rpm/suse/spacewalk-web&distro=SUSE%20Manager%20Server%20Module%204.0pkg:rpm/suse/spacewalk-web&distro=SUSE%20Manager%20Server%20Module%204.1pkg:rpm/suse/susemanager&distro=SUSE%20Manager%20Server%203.2pkg:rpm/suse/susemanager&distro=SUSE%20Manager%20Server%20Module%204.0pkg:rpm/suse/susemanager&distro=SUSE%20Manager%20Server%20Module%204.1pkg:rpm/suse/susemanager-doc-indexes&distro=SUSE%20Manager%20Server%20Module%204.1pkg:rpm/suse/susemanager-docs_en&distro=SUSE%20Manager%20Server%20Module%204.1pkg:rpm/suse/susemanager-frontend-libs&distro=SUSE%20Manager%20Server%203.2pkg:rpm/suse/susemanager-frontend-libs&distro=SUSE%20Manager%20Server%20Module%204.0pkg:rpm/suse/susemanager-frontend-libs&distro=SUSE%20Manager%20Server%20Module%204.1pkg:rpm/suse/susemanager-schema&distro=SUSE%20Manager%20Server%203.2pkg:rpm/suse/susemanager-schema&distro=SUSE%20Manager%20Server%20Module%204.0pkg:rpm/suse/susemanager-schema&distro=SUSE%20Manager%20Server%20Module%204.1pkg:rpm/suse/susemanager-sls&distro=SUSE%20Manager%20Server%203.2pkg:rpm/suse/susemanager-sls&distro=SUSE%20Manager%20Server%20Module%204.0pkg:rpm/suse/susemanager-sls&distro=SUSE%20Manager%20Server%20Module%204.1pkg:rpm/suse/susemanager-sync-data&distro=SUSE%20Manager%20Server%20Module%204.0pkg:rpm/suse/susemanager-sync-data&distro=SUSE%20Manager%20Server%20Module%204.1pkg:rpm/suse/suseRegisterInfo&distro=SUSE%20Manager%20Proxy%20Module%204.1pkg:rpm/suse/suseRegisterInfo&distro=SUSE%20Manager%20Server%20Module%204.1pkg:rpm/suse/uyuni-common-libs&distro=SUSE%20Manager%20Proxy%20Module%204.1pkg:rpm/suse/uyuni-common-libs&distro=SUSE%20Manager%20Server%20Module%204.1pkg:rpm/suse/virtual-host-gatherer&distro=SUSE%20Manager%20Server%20Module%204.1pkg:rpm/suse/virtualization-host-formula&distro=SUSE%20Manager%20Server%20Module%204.0pkg:rpm/suse/virtualization-host-formula&distro=SUSE%20Manager%20Server%20Module%204.1pkg:rpm/suse/yomi-formula&distro=SUSE%20Manager%20Server%20Module%204.1pkg:rpm/suse/zypp-plugin-spacewalk&distro=SUSE%20Manager%20Proxy%203.2
< 0+ 117 more
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: >= 7.0.0, < 7.70.0
- (no CPE)range: <= 4.0.0
- (no CPE)range: >= 1.12.0, < 3.5.0
- (no CPE)range: < 1.19.0
- (no CPE)range: < 4.4.0
- (no CPE)range: >= 1.12.0, < 3.5.0
- (no CPE)range: >= 1.12.0, < 3.5.0
- (no CPE)range: >= 1.12.0, < 3.5.0
- (no CPE)range: < 0.6.0-3.module_el8.6.0+2881+2f24dc92
- (no CPE)range: < 0.6.0-3.module_el8.6.0+2881+2f24dc92
- (no CPE)range: < 0.5.0-1.module_el8.5.0+2641+983b221b
- (no CPE)range: < 0.4-5.module_el8.6.0+2881+2f24dc92
- (no CPE)range: < 1.0.0-9.module_el8.5.0+2641+983b221b
- (no CPE)range: < 5.1-12.module_el8.6.0+2881+2f24dc92
- (no CPE)range: < 5.1-12.module_el8.6.0+2737+7e73ea90
- (no CPE)range: < 1.3.2-9.module_el8.5.0+2641+983b221b
- (no CPE)range: < 1.2.13-11.1
- (no CPE)range: < 1.2.13-11.1
- (no CPE)range: < 1.2.18-1.2
- (no CPE)range: < 1.2.13-8.1
- (no CPE)range: < 1.2.13-8.1
- (no CPE)range: < 6.0.30-bp152.2.11.1
- (no CPE)range: < 6.0.30-bp152.2.11.1
- (no CPE)range: < 2.1.0-1.1
- (no CPE)range: < 0.1.1584363976.36bce64-3.6.1
- (no CPE)range: < 0.1.1584363976.36bce64-3.9.1
- (no CPE)range: < 1.2.13-11.1
- (no CPE)range: < 1.2.13-bp151.4.12.1
- (no CPE)range: < 1.2.13-8.1
- (no CPE)range: < 1.2.13-bp151.4.12.1
- (no CPE)range: < 3.0.0+git20190806.32c4bae0-5.3.6
- (no CPE)range: < 0.4.0-6.3.6
- (no CPE)range: < 0.4.0-6.3.6
- (no CPE)range: < 2.8.5-3.2.6
- (no CPE)range: < 5.3.7-4.3.2
- (no CPE)range: < 4.5.6-3.2.6
- (no CPE)range: < 4.4.10-3.2.6
- (no CPE)range: < 3.0.18-3.2.7
- (no CPE)range: < 0.1.1595937550.0285244-3.20.2
- (no CPE)range: < 0.1.1595937550.0285244-3.3.6
- (no CPE)range: < 4.1.4-3.3.6
- (no CPE)range: < 4.1.3-2.3.6
- (no CPE)range: < 4.1.3-2.3.6
- (no CPE)range: < 0.1.1-4.6.2
- (no CPE)range: < 0.1.1-3.3.6
- (no CPE)range: < 6.0.30-bp152.2.11.1
- (no CPE)range: < 6.0.30-bp152.2.11.1
- (no CPE)range: < 4.1-6.3.6
- (no CPE)range: < 4.1-6.3.6
- (no CPE)range: < 0.7.1-3.10.2
- (no CPE)range: < 0.7.1-3.5.2
- (no CPE)range: < 4.1.0-Build5.3
- (no CPE)range: < 2016.11.10-6.38.1
- (no CPE)range: < 1.0.1584363976.36bce64-2.12.1
- (no CPE)range: < 3.2.15-6.61.1
- (no CPE)range: < 3.2.15-0.16.47.1
- (no CPE)range: < 0.1.1595937550.0285244-3.19.2
- (no CPE)range: < 0.1.1595937550.0285244-3.3.6
- (no CPE)range: < 0.17.0-4.6.3
- (no CPE)range: < 4.0.20-3.19.2
- (no CPE)range: < 4.1.6-4.3.6
- (no CPE)range: < 4.0.20-3.19.2
- (no CPE)range: < 4.1.6-4.3.6
- (no CPE)range: < 4.0.11-3.12.1
- (no CPE)range: < 2.8.57.23-3.51.1
- (no CPE)range: < 4.1.14-4.5.2
- (no CPE)range: < 2.8.57.23-3.51.1
- (no CPE)range: < 4.1.14-4.5.2
- (no CPE)range: < 4.1.9-3.3.6
- (no CPE)range: < 4.0.17-3.21.3
- (no CPE)range: < 4.1.12-3.3.6
- (no CPE)range: < 4.0.17-3.21.3
- (no CPE)range: < 4.1.12-3.3.6
- (no CPE)range: < 2.8.22.8-3.15.1
- (no CPE)range: < 2.8.22.8-3.15.1
- (no CPE)range: < 2.8.78.29-3.50.1
- (no CPE)range: < 4.0.37-3.39.1
- (no CPE)range: < 4.1.18-3.5.3
- (no CPE)range: < 4.0.14-3.10.3
- (no CPE)range: < 4.1.2-3.3.6
- (no CPE)range: < 2.8.6.8-3.18.1
- (no CPE)range: < 4.0.14-3.14.1
- (no CPE)range: < 2.8.18.7-3.15.1
- (no CPE)range: < 4.0.18-3.21.3
- (no CPE)range: < 4.1.11-3.3.6
- (no CPE)range: < 2.8.7.24-3.48.1
- (no CPE)range: < 4.0.23-3.30.3
- (no CPE)range: < 4.1.15-3.3.6
- (no CPE)range: < 2.8.7.24-3.48.1
- (no CPE)range: < 4.0.23-3.30.3
- (no CPE)range: < 4.1.15-3.3.6
- (no CPE)range: < 3.2.24-3.43.1
- (no CPE)range: < 4.0.28-3.36.3
- (no CPE)range: < 4.1.18-3.3.6
- (no CPE)range: < 4.1-11.7.2
- (no CPE)range: < 4.1-11.7.2
- (no CPE)range: < 3.2.5-3.13.1
- (no CPE)range: < 4.0.2-4.3.2
- (no CPE)range: < 4.1.0-3.3.6
- (no CPE)range: < 3.2.24-3.40.1
- (no CPE)range: < 4.0.22-3.29.2
- (no CPE)range: < 4.1.12-3.3.6
- (no CPE)range: < 3.2.31-3.47.1
- (no CPE)range: < 4.0.29-3.31.3
- (no CPE)range: < 4.1.14-3.5.2
- (no CPE)range: < 4.0.18-3.24.2
- (no CPE)range: < 4.1.7-3.3.6
- (no CPE)range: < 4.1.3-4.3.6
- (no CPE)range: < 4.1.3-4.3.6
- (no CPE)range: < 4.1.6-3.3.6
- (no CPE)range: < 4.1.6-3.3.6
- (no CPE)range: < 1.0.21-4.3.6
- (no CPE)range: < 0.5-4.12.3
- (no CPE)range: < 0.5-3.3.1
- (no CPE)range: < 0.0.1+git.1595952633.b300be2-3.3.6
- (no CPE)range: < 1.0.7-3.13.1
Patches
Vulnerability mechanics
References
73- github.com/jquery/jquery/commit/1d61fd9407e6fbe82fe55cb0b938307aa0791f77nvdPatchThird Party AdvisoryWEB
- www.oracle.com//security-alerts/cpujul2021.htmlnvdPatchThird Party AdvisoryWEB
- www.oracle.com/security-alerts/cpuApr2021.htmlnvdPatchThird Party AdvisoryWEB
- www.oracle.com/security-alerts/cpuapr2022.htmlnvdPatchThird Party AdvisoryWEB
- www.oracle.com/security-alerts/cpujan2022.htmlnvdPatchThird Party AdvisoryWEB
- www.oracle.com/security-alerts/cpuoct2021.htmlnvdPatchThird Party AdvisoryWEB
- packetstormsecurity.com/files/162159/jQuery-1.2-Cross-Site-Scripting.htmlnvdExploitThird Party AdvisoryVDB Entry
- blog.jquery.com/2020/04/10/jquery-3-5-0-released/nvdRelease NotesVendor Advisory
- github.com/advisories/GHSA-gxr4-xjj5-5px2ghsaADVISORY
- github.com/jquery/jquery/security/advisories/GHSA-gxr4-xjj5-5px2nvdMitigationThird Party AdvisoryWEB
- jquery.com/upgrade-guide/3.5/nvdMitigationVendor Advisory
- lists.debian.org/debian-lts-announce/2021/03/msg00033.htmlnvdMailing ListThird Party AdvisoryWEB
- nvd.nist.gov/vuln/detail/CVE-2020-11022ghsaADVISORY
- security.gentoo.org/glsa/202007-03nvdThird Party AdvisoryWEB
- security.netapp.com/advisory/ntap-20200511-0006/nvdThird Party Advisory
- www.debian.org/security/2020/dsa-4693nvdThird Party AdvisoryWEB
- www.drupal.org/sa-core-2020-002nvdThird Party AdvisoryWEB
- www.oracle.com/security-alerts/cpujan2021.htmlnvdThird Party AdvisoryWEB
- www.oracle.com/security-alerts/cpujul2020.htmlnvdThird Party AdvisoryWEB
- www.oracle.com/security-alerts/cpuoct2020.htmlnvdThird Party AdvisoryWEB
- www.tenable.com/security/tns-2020-10nvdThird Party AdvisoryWEB
- www.tenable.com/security/tns-2020-11nvdThird Party AdvisoryWEB
- www.tenable.com/security/tns-2021-02nvdThird Party AdvisoryWEB
- www.tenable.com/security/tns-2021-10nvdThird Party AdvisoryWEB
- lists.opensuse.org/opensuse-security-announce/2020-07/msg00067.htmlnvdBroken Link
- lists.opensuse.org/opensuse-security-announce/2020-07/msg00085.htmlnvdBroken Link
- lists.opensuse.org/opensuse-security-announce/2020-11/msg00039.htmlnvdBroken Link
- security.netapp.com/advisory/ntap-20200511-0006nvdWEB
- blog.jquery.com/2020/04/10/jquery-3-5-0-releasednvdWEB
- github.com/jquery/jquery/releases/tag/3.5.0nvdWEB
- github.com/maximebf/php-debugbar/commit/847216e60544258c881f2733d699bbcfeefac0fcnvdWEB
- github.com/maximebf/php-debugbar/issues/447nvdWEB
- github.com/rubysec/ruby-advisory-db/blob/master/gems/jquery-rails/CVE-2020-11022.ymlnvdWEB
- jquery.com/upgrade-guide/3.5nvdWEB
- lists.apache.org/thread.html/r0483ba0072783c2e1bfea613984bfb3c86e73ba8879d780dc1cc7d36@%3Cissues.flink.apache.org%3EnvdWEB
- lists.apache.org/thread.html/r49ce4243b4738dd763caeb27fa8ad6afb426ae3e8c011ff00b8b1f48@%3Cissues.flink.apache.org%3EnvdWEB
- lists.apache.org/thread.html/r54565a8f025c7c4f305355fdfd75b68eca442eebdb5f31c2e7d977ae@%3Cissues.flink.apache.org%3EnvdWEB
- lists.apache.org/thread.html/r564585d97bc069137e64f521e68ba490c7c9c5b342df5d73c49a0760@%3Cissues.flink.apache.org%3EnvdWEB
- lists.apache.org/thread.html/r706cfbc098420f7113968cc377247ec3d1439bce42e679c11c609e2d@%3Cissues.flink.apache.org%3EnvdWEB
- lists.apache.org/thread.html/r8f70b0f65d6bedf316ecd899371fd89e65333bc988f6326d2956735c@%3Cissues.flink.apache.org%3EnvdWEB
- lists.apache.org/thread.html/rbb448222ba62c430e21e13f940be4cb5cfc373cd3bce56b48c0ffa67@%3Cdev.flink.apache.org%3EnvdWEB
- lists.apache.org/thread.html/rdf44341677cf7eec7e9aa96dcf3f37ed709544863d619cca8c36f133@%3Ccommits.airflow.apache.org%3EnvdWEB
- lists.apache.org/thread.html/re4ae96fa5c1a2fe71ccbb7b7ac1538bd0cb677be270a2bf6e2f8d108@%3Cissues.flink.apache.org%3EnvdWEB
- lists.apache.org/thread.html/rede9cfaa756e050a3d83045008f84a62802fc68c17f2b4eabeaae5e4@%3Cissues.flink.apache.org%3EnvdWEB
- lists.apache.org/thread.html/ree3bd8ddb23df5fa4e372d11c226830ea3650056b1059f3965b3fce2@%3Cissues.flink.apache.org%3EnvdWEB
- lists.debian.org/debian-lts-announce/2023/08/msg00040.htmlnvdWEB
- lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/AVKYXLWCLZBV2N7M46KYK4LVA5OXWPBYnvdWEB
- lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/QPN2L2XVQGUA2V5HNQJWHK3APSK3VN7KnvdWEB
- lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/SAPQVX3XDNPGFT26QAQ6AJIXZZBZ4CD4nvdWEB
- lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/SFP4UK4EGP4AFH2MWYJ5A5Z4I7XVFQ6BnvdWEB
- lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/VOE7P7APPRQKD4FGNHBKJPDY6FFCOH3WnvdWEB
- lists.opensuse.org/opensuse-security-announce/2020-07/msg00067.htmlnvdWEB
- lists.opensuse.org/opensuse-security-announce/2020-07/msg00085.htmlnvdWEB
- lists.opensuse.org/opensuse-security-announce/2020-11/msg00039.htmlnvdWEB
- packetstormsecurity.com/files/162159/jQuery-1.2-Cross-Site-Scripting.htmlnvdWEB
- www.oracle.com/security-alerts/cpujul2022.htmlnvdWEB
- lists.apache.org/thread.html/r0483ba0072783c2e1bfea613984bfb3c86e73ba8879d780dc1cc7d36%40%3Cissues.flink.apache.org%3Envd
- lists.apache.org/thread.html/r49ce4243b4738dd763caeb27fa8ad6afb426ae3e8c011ff00b8b1f48%40%3Cissues.flink.apache.org%3Envd
- lists.apache.org/thread.html/r54565a8f025c7c4f305355fdfd75b68eca442eebdb5f31c2e7d977ae%40%3Cissues.flink.apache.org%3Envd
- lists.apache.org/thread.html/r564585d97bc069137e64f521e68ba490c7c9c5b342df5d73c49a0760%40%3Cissues.flink.apache.org%3Envd
- lists.apache.org/thread.html/r706cfbc098420f7113968cc377247ec3d1439bce42e679c11c609e2d%40%3Cissues.flink.apache.org%3Envd
- lists.apache.org/thread.html/r8f70b0f65d6bedf316ecd899371fd89e65333bc988f6326d2956735c%40%3Cissues.flink.apache.org%3Envd
- lists.apache.org/thread.html/rbb448222ba62c430e21e13f940be4cb5cfc373cd3bce56b48c0ffa67%40%3Cdev.flink.apache.org%3Envd
- lists.apache.org/thread.html/rdf44341677cf7eec7e9aa96dcf3f37ed709544863d619cca8c36f133%40%3Ccommits.airflow.apache.org%3Envd
- lists.apache.org/thread.html/re4ae96fa5c1a2fe71ccbb7b7ac1538bd0cb677be270a2bf6e2f8d108%40%3Cissues.flink.apache.org%3Envd
- lists.apache.org/thread.html/rede9cfaa756e050a3d83045008f84a62802fc68c17f2b4eabeaae5e4%40%3Cissues.flink.apache.org%3Envd
- lists.apache.org/thread.html/ree3bd8ddb23df5fa4e372d11c226830ea3650056b1059f3965b3fce2%40%3Cissues.flink.apache.org%3Envd
- lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/AVKYXLWCLZBV2N7M46KYK4LVA5OXWPBY/nvd
- lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QPN2L2XVQGUA2V5HNQJWHK3APSK3VN7K/nvd
- lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SAPQVX3XDNPGFT26QAQ6AJIXZZBZ4CD4/nvd
- lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SFP4UK4EGP4AFH2MWYJ5A5Z4I7XVFQ6B/nvd
- lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VOE7P7APPRQKD4FGNHBKJPDY6FFCOH3W/nvd
- www.oracle.com/security-alerts/cpujul2021.htmlnvd
News mentions
0No linked articles in our index yet.