jQuery – CVE-2014-6071

Description

Kayran has detected that the version of the jQuery you use is vulnerable to Cross-site Scripting attacks (XSS).
This can be done by abusing vectors related to use of the “text” method inside after.

This allows an attacker to modify some system files or information. Yet, the attacker does not have control over what can be modified, or very limited in terms of possibilities.

Recommendation

Upgrade the version of the jquery you use.
Since it exists only in versions up until 1.4.2, make sure you upgrade to version higher than 1.4.2.

References

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6071

< Return to all Vulnerabilities

The Cloud

I’m pretty sure there isn’t a single adult in the world who hasn’t at least heard of The Cloud. Explaining “The Cloud” in 2022 may

Read More »

Blue Team

We’ve talked about The Red Team before, but what about The Blue Team? How is this group different from the red one? Why would we

Read More »

HTTP VS. HTTPS

You must have once wondered what HTTP means and what is the difference between that ugly word to HTTPS, and if not, then please read

Read More »