CVE-2007-2379 in jQueryИнформация

Сводка

по MITRE

The jQuery framework exchanges data using JavaScript Object Notation (JSON) without an associated protection scheme, which allows remote attackers to obtain the data via a web page that retrieves the data through a URL in the SRC attribute of a SCRIPT element and captures the data using other JavaScript code, aka "JavaScript Hijacking."

If you want to get best quality of vulnerability data, you may have to visit VulDB.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Резервировать

30.04.2007

Раскрытие

30.04.2007

Модерация

принято

Вход

VDB-36520

CPE

готов

CWE

CWE-80 (Подтверждённый)

Эксплойт

Скачать

CVSS

5.0 (NVD)

EPSS

0.01367

KEV

Нет

Деятельности

Очень низкий

Сектор

Finance, Insurance, ...

Источники

MITRE	https://www.cve.org/CVERecord?id=CVE-2007-2379
NVD	https://nvd.nist.gov/vuln/detail/CVE-2007-2379
CVE Details	https://www.cvedetails.com/cve/CVE-2007-2379/

◂ Предыдущий Обзор Далее ▸

Want to know what is going to be exploited?

We predict KEV entries!