Request a Demo

jQuery – CVE-2014-6071

Description

Kayran has detected that the version of the jQuery you use is vulnerable to Cross-site Scripting attacks (XSS).
This can be done by abusing vectors related to use of the “text” method inside after.

This allows an attacker to modify some system files or information. Yet, the attacker does not have control over what can be modified, or very limited in terms of possibilities.

Severity/Score

CVSS Version 3.x – 6.1 Medium

Recommendation

Upgrade the version of the jquery you use.
Since it exists only in versions up until 1.4.2, make sure you upgrade to version higher than 1.4.2.

References

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6071

https://cwe.mitre.org/data/definitions/79.html

< Return to all Vulnerabilities

Request a Demo

Browser Exploitation

We know that it’s possible to exploit weaknesses (or vulnerabilities) that exist in anything, from a certain code to the entire application, let’s talk about

Read More »

What is Kayran

Kayran scanner is helping all businesses, both SMBs and enterprises, to test their online assets and products for over 30,000+ vulnerabilities.Kayran’s mission is to make

Read More »
Facebook Linkedin

WEB APPLICATION VULNERABILITY SCANNER

Links

registered user?

Log in
Facebook Linkedin