H1-519061 — Vulnetix

H1-519061 PUBLISHED

Ruby is shipping a vulnerable jQuery

Exploit Intelligence

cve-2015-9251 (github-poc)
This repository contains a Proof of Concept (PoC) for CVE-2015-9251, a vulnerability in jQuery versions prior to 3.0.0 that allows attackers to perform Cross-Site Scripting (XSS) attacks under certain conditions. (github-poc)
PoC para CVE-2015-9251 jQuery menor a 3.0.0. (github-poc)
halkichi0308/CVE-2015-9251 (github-poc)
Ruby is shipping a vulnerable jQuery (hackerone)
Ruby is shipping a vulnerable jQuery (hackerone)

Timeline

Oct 3, 2019 CVE Published
Oct 3, 2019 PoC Published

References

Ruby is shipping a vulnerable jQuery advisory

Open in Interactive Console →

$ Console Community · 100/wk Open console ›