UBUNTU-CVE-2020-4051
- Source
- https://ubuntu.com/security/CVE-2020-4051
- Import Source
- https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2020/UBUNTU-CVE-2020-4051.json
- JSON Data
- https://api.osv.dev/v1/vulns/UBUNTU-CVE-2020-4051
- Related
- Published
- 2020-06-15T22:15:00Z
- Modified
- 2025-06-17T08:43:22Z
- Severity
-
- 3.7 (Low) CVSS_V3 - CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:L/I:L/A:N CVSS Calculator
- 5.4 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N CVSS Calculator
- Summary
- [none]
- Details
-
In Dijit before versions 1.11.11, and greater than or equal to 1.12.0 and less than 1.12.9, and greater than or equal to 1.13.0 and less than 1.13.8, and greater than or equal to 1.14.0 and less than 1.14.7, and greater than or equal to 1.15.0 and less than 1.15.4, and greater than or equal to 1.16.0 and less than 1.16.3, there is a cross-site scripting vulnerability in the Editor's LinkDialog plugin. This has been fixed in 1.11.11, 1.12.9, 1.13.8, 1.14.7, 1.15.4, 1.16.3.
- References
Affected packages
Ubuntu:Pro:16.04:LTS / dojo
Package
- Name
- dojo
- Purl
- pkg:deb/ubuntu/dojo@1.10.4+dfsg-2ubuntu0.1~esm1?arch=source&distro=esm-apps/xenial
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed1.10.4+dfsg-2ubuntu0.1~esm1
Ecosystem specific
{
"availability": "Available with Ubuntu Pro: https://ubuntu.com/pro",
"ubuntu_priority": "medium",
"binaries": [
{
"binary_name": "libjs-dojo-core",
"binary_version": "1.10.4+dfsg-2ubuntu0.1~esm1"
},
{
"binary_name": "libjs-dojo-dijit",
"binary_version": "1.10.4+dfsg-2ubuntu0.1~esm1"
},
{
"binary_name": "libjs-dojo-dojox",
"binary_version": "1.10.4+dfsg-2ubuntu0.1~esm1"
}
]
}
Ubuntu:Pro:18.04:LTS / dojo
Package
- Name
- dojo
- Purl
- pkg:deb/ubuntu/dojo@1.11.0+dfsg-1?arch=source&distro=esm-apps/bionic
Ubuntu:Pro:20.04:LTS / dojo
Package
- Name
- dojo
- Purl
- pkg:deb/ubuntu/dojo@1.15.0+dfsg1-1ubuntu0.1~esm1?arch=source&distro=esm-apps/focal
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed1.15.0+dfsg1-1ubuntu0.1~esm1
Ecosystem specific
{
"availability": "Available with Ubuntu Pro: https://ubuntu.com/pro",
"ubuntu_priority": "medium",
"binaries": [
{
"binary_name": "libjs-dojo-core",
"binary_version": "1.15.0+dfsg1-1ubuntu0.1~esm1"
},
{
"binary_name": "libjs-dojo-dijit",
"binary_version": "1.15.0+dfsg1-1ubuntu0.1~esm1"
},
{
"binary_name": "libjs-dojo-dojox",
"binary_version": "1.15.0+dfsg1-1ubuntu0.1~esm1"
},
{
"binary_name": "shrinksafe",
"binary_version": "1.15.0+dfsg1-1ubuntu0.1~esm1"
}
]
}
Ubuntu:22.04:LTS / dojo
Package
- Name
- dojo
- Purl
- pkg:deb/ubuntu/dojo@1.15.4+dfsg1-1?arch=source&distro=jammy
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed1.15.4+dfsg1-1
Ecosystem specific
{
"availability": "No subscription required",
"ubuntu_priority": "medium",
"binaries": [
{
"binary_name": "libjs-dojo-core",
"binary_version": "1.15.4+dfsg1-1"
},
{
"binary_name": "libjs-dojo-dijit",
"binary_version": "1.15.4+dfsg1-1"
},
{
"binary_name": "libjs-dojo-dojox",
"binary_version": "1.15.4+dfsg1-1"
},
{
"binary_name": "shrinksafe",
"binary_version": "1.15.4+dfsg1-1"
}
]
}
Ubuntu:24.10 / dojo
Package
- Name
- dojo
- Purl
- pkg:deb/ubuntu/dojo@1.17.2+dfsg1-2.1?arch=source&distro=oracular
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed1.17.2+dfsg1-2.1
Ecosystem specific
{
"availability": "No subscription required",
"ubuntu_priority": "medium",
"binaries": [
{
"binary_name": "libjs-dojo-core",
"binary_version": "1.17.2+dfsg1-2.1"
},
{
"binary_name": "libjs-dojo-dijit",
"binary_version": "1.17.2+dfsg1-2.1"
},
{
"binary_name": "libjs-dojo-dojox",
"binary_version": "1.17.2+dfsg1-2.1"
},
{
"binary_name": "shrinksafe",
"binary_version": "1.17.2+dfsg1-2.1"
}
]
}
Ubuntu:24.04:LTS / dojo
Package
- Name
- dojo
- Purl
- pkg:deb/ubuntu/dojo@1.17.2+dfsg1-2.1?arch=source&distro=noble
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed1.17.2+dfsg1-2.1
Ecosystem specific
{
"availability": "No subscription required",
"ubuntu_priority": "medium",
"binaries": [
{
"binary_name": "libjs-dojo-core",
"binary_version": "1.17.2+dfsg1-2.1"
},
{
"binary_name": "libjs-dojo-dijit",
"binary_version": "1.17.2+dfsg1-2.1"
},
{
"binary_name": "libjs-dojo-dojox",
"binary_version": "1.17.2+dfsg1-2.1"
},
{
"binary_name": "shrinksafe",
"binary_version": "1.17.2+dfsg1-2.1"
}
]
}
Ubuntu:25.04 / dojo
Package
- Name
- dojo
- Purl
- pkg:deb/ubuntu/dojo@1.17.3+dfsg1-1?arch=source&distro=plucky
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed1.17.3+dfsg1-1
Ecosystem specific
{
"availability": "No subscription required",
"ubuntu_priority": "medium",
"binaries": [
{
"binary_name": "libjs-dojo-core",
"binary_version": "1.17.3+dfsg1-1"
},
{
"binary_name": "libjs-dojo-dijit",
"binary_version": "1.17.3+dfsg1-1"
},
{
"binary_name": "libjs-dojo-dojox",
"binary_version": "1.17.3+dfsg1-1"
},
{
"binary_name": "shrinksafe",
"binary_version": "1.17.3+dfsg1-1"
}
]
}