Description

Cross-site scripting (XSS) vulnerability in jquery.ui.dialog.js in the Dialog widget in jQuery UI before 1.10.0 allows remote attackers to inject arbitrary web script or HTML via the title option.

Remediation

References

CVE-2010-5312

Related Vulnerabilities

WordPress Plugin WordPress Poll Multiple SQL Injection and Security Bypass Vulnerabilities (34.04)

Oracle HTTP Server Loop with Unreachable Exit Condition ('Infinite Loop') Vulnerability (CVE-2021-4185)

WordPress Plugin MapPress Maps for WordPress Cross-Site Request Forgery (2.53.8)

Drupal Core 5.x Cross-Site Scripting (5.0 - 5.5)

Drupal URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2020-13662)

Severity

Medium

Classification

CVE-2010-5312 CWE-707

Tags

Missing Update Known Vulnerabilities