PT-2020-7940 · Jqtree · Jqtree

Published

2020-09-01

Updated

2020-09-01

CVE-2016-1000234

None

No severity ratings or metrics are available. When they are, we'll update the corresponding info on the page.

Name of the Vulnerable Software and Affected Versions: jqtree versions prior to 1.3.4

Description: The issue concerns cross-site scripting in the drag and drop functionality for modifying tree data. When a user attempts to drag a node to a different position in the hierarchy, script content existing within the node will be executed.

Recommendations: Update to 1.3.4 or later.

XSS

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-79

Related Identifiers

CVE-2016-1000234

GHSA-GJHX-GXWX-JX9J

Affected Products

Jqtree

PT-2020-7940 · Jqtree · Jqtree

CVE-2016-1000234

Weakness Enumeration

Related Identifiers

Affected Products

References · 5