Security
Headlines
HeadlinesLatestCVEs

Headline

CVE-2021-43956: [FE-7395] CVE-2021-43956: Javascript Prototype Pollution in the jQuery deserialize library

The jQuery deserialize library in Fisheye and Crucible before version 4.8.9 allowed remote attackers to to inject arbitrary HTML and/or JavaScript via a prototype pollution vulnerability.

CVE
Open in Source
#vulnerability#java

Details

  • **Type: ** Public Security Vulnerability

  • **Priority: ** Low

  • Resolution: Fixed

  • Affects Version/s: 4.8.8

  • Component/s: None

Description

The jQuery deserialize library in Fisheye and Crucible before version 4.8.9 allowed remote attackers to to inject arbitrary HTML and/or JavaScript via a prototype pollution vulnerability.

Affected versions:

  • version < 4.8.9

Fixed versions:

  • 4.8.9

Issue Links

is related to

Public Security Vulnerability - CRUC-8531 CVE-2021-43956: Javascript Prototype Pollution in the jQuery deserialize library

  • Low - Low priority issues
  • Published

Activity

CVE: Latest News

CVE-2023-50976: Transactions API Authorization by oleiman · Pull Request #14969 · redpanda-data/redpanda
CVE
CVE-2023-6905
CVE
CVE-2023-6903
CVE
CVE-2023-6904
CVE
CVE-2023-3907
CVE