CVE-2024-30875

EPSS 19.8%

Published: 10/17/2024Modified: 10/18/2024

Description

Cross Site Scripting vulnerability in JavaScript Library jquery-ui v.1.13.1 allows a remote attacker to obtain sensitive information and execute arbitrary code via a crafted payload to the window.addEventListener component.

Affected packages (1)

Debian/jqueryuifrom 0

References (2)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2024-30875
WEBhttps://github.com/Ant1sec-ops/CVE-2024-30875