CVE-2022-23395

Source

https://nvd.nist.gov/vuln/detail/CVE-2022-23395

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-23395.json

Aliases

• GHSA-gcx5-3p5f-f8vp

Published

2022-03-02T12:15:07Z

Modified

2023-11-29T09:26:49.396777Z

Details

jQuery Cookie 1.4.1 is affected by prototype pollution, which can lead to DOM cross-site scripting (XSS).

References

• https://security.netapp.com/advisory/ntap-20220325-0008/
• https://snyk.io/test/npm/jquery.cookie/1.4.1?tab=issues