-
Suggestion
-
Resolution: Unresolved
-
None
-
3
-
Google Cloud Platform Cloud Web Security Scanner tags two javascript libraries as being outdated and potentially vulnerable:
jquery 2.2.4
More information at
- https://github.com/jquery/jquery/issues/2432
- http://blog.jquery.com/2016/01/08/jquery-2-2-and-1-12-released/
- https://nvd.nist.gov/vuln/detail/CVE-2015-9251
- http://research.insecurelabs.org/jquery/test/
tinyMCE 4.6.4
More information at
- relates to
-
JRASERVER-67820 Security vulnerabilities exist in Javascript libraries used in Jira Server (7.11.2)
- Gathering Interest
-
JRASERVER-72052 Update jQuery to avoid CVE-2020-11022 and CVE-2020-11023
-
- Published
-
- mentioned in
-
Page Loading...
JQuery 2.2.4 has the following CVEs:
– CVE-2015-9251
– CVE-2015-9251
– CVE-2019-11358
– CVE-2020-11022
– CVE-2020-11023
and Jira Server 8.20.2 still uses this version, which is a blocking point for us. Any plans to update JQuery?
Thanks and regards,