0029742: Multiple vulnerabilities in jquery - MantisBT - Signup temporarily disabled due to spam

ID	Project	Category	View Status	Date Submitted	Last Update

0029742	mantisbt	security	public	2022-03-13 11:07	2022-04-02 06:03

Reporter	odeneriksson	Assigned To	atrol
Priority	high	Severity	major	Reproducibility	have not tried
Status	closed	Resolution	duplicate
Product Version	2.25.2

Summary	0029742: Multiple vulnerabilities in jquery
Description	Hi, The bundled version of jquery contains multiple flaws, discovered by a nessus scan. The affected file is js/jquery-2.2.4.min.js and should probably be upgraded to at least 3.5.0. References: https://github.com/jquery/jquery/security/advisories https://blog.jquery.com/2020/04/10/jquery-3-5-0-released/ https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11022 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11023
Tags	No tags attached.

atrol 2022-03-13 11:23 developer ~0066356	Known issue, see 0026357