JavaScript Hijacking Vulnerability in jQuery by jQuery Foundation
CVE-2007-2379

Currently unrated

Key Information:

Vendor

Jquery

Status
Jquery
Vendor
CVE Published:
30 April 2007

What is CVE-2007-2379?

The jQuery framework allows the exchange of data using JSON without adequate protection mechanisms. This vulnerability enables remote attackers to exploit web pages that load JSON data through the SRC attribute of a SCRIPT element. By doing so, they can capture sensitive data using their own JavaScript code, effectively performing a JavaScript Hijacking attack. This weakness emphasizes the need for robust security measures within web applications to prevent unauthorized data access.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

http://www.fortifysoftware.com/servlet/downloads/public/J...
x_refsource_MISC
http://osvdb.org/43320
vdb-entryx_refsource_OSVDB
https://security.netapp.com/advisory/ntap-20190416-0007/
x_refsource_CONFIRM

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.