CVE-2017-15719
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2017-15719
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2017-15719.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2017-15719
- Aliases
- Published
- 2018-03-12T13:29:00Z
- Modified
- 2024-09-02T23:49:02Z
- Severity
-
- 6.1 (Medium) CVSS_V3 - CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N CVSS Calculator
- Summary
- [none]
- Details
-
In Wicket jQuery UI 6.28.0 and earlier, 7.9.1 and earlier, and 8.0.0-M8 and earlier, a security issue has been discovered in the WYSIWYG editor that allows an attacker to submit arbitrary JS code to WYSIWYG editor.
- References
Affected packages
Git / github.com/sebfz1/wicket-jquery-ui
Affected ranges
- Type
- GIT
- Repo
- https://github.com/sebfz1/wicket-jquery-ui
- Events
-
Last affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affectedIntroducedLast affectedLast affectedLast affectedLast affectedLast affectedLast affected