VulnerableCode Package Details - pkg:deb/debian/jquery@3.3.1~dfsg-3%2Bdeb10u1

Search for packages

Vulnerability	Summary	Fixed by
This package is not known to be affected by vulnerabilities.

Vulnerability

Summary

Fixed by

This package is not known to be affected by vulnerabilities.

Vulnerability	Summary	Aliases
VCID-fhgh-jkwa-aaah	In jQuery versions greater than or equal to 1.0.3 and before 3.5.0, passing HTML containing <option> elements from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. .html(), .append(), and others) may execute untrusted code. This problem is patched in jQuery 3.5.0.	CVE-2020-11023 GHSA-jpcq-cgw6-v4j6
VCID-kkd1-e4k1-aaam	In jQuery versions greater than or equal to 1.2 and before 3.5.0, passing HTML from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. .html(), .append(), and others) may execute untrusted code. This problem is patched in jQuery 3.5.0.	CVE-2020-11022 GHSA-gxr4-xjj5-5px2

Vulnerability

Summary

Aliases

VCID-fhgh-jkwa-aaah

In jQuery versions greater than or equal to 1.0.3 and before 3.5.0, passing HTML containing <option> elements from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. .html(), .append(), and others) may execute untrusted code. This problem is patched in jQuery 3.5.0.

CVE-2020-11023
GHSA-jpcq-cgw6-v4j6

VCID-kkd1-e4k1-aaam

In jQuery versions greater than or equal to 1.2 and before 3.5.0, passing HTML from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. .html(), .append(), and others) may execute untrusted code. This problem is patched in jQuery 3.5.0.

CVE-2020-11022
GHSA-gxr4-xjj5-5px2

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2025-06-21T14:47:43.031541+00:00	Debian Oval Importer	Fixing	VCID-kkd1-e4k1-aaam	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	36.1.3
2025-06-21T14:21:02.762956+00:00	Debian Oval Importer	Fixing	VCID-fhgh-jkwa-aaah	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	36.1.3
2025-06-21T00:54:39.420692+00:00	Debian Oval Importer	Fixing	VCID-fhgh-jkwa-aaah	None	36.1.3
2025-06-20T20:56:12.783495+00:00	Debian Oval Importer	Fixing	VCID-kkd1-e4k1-aaam	None	36.1.3
2025-06-08T07:41:05.635738+00:00	Debian Oval Importer	Fixing	VCID-kkd1-e4k1-aaam	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	36.1.0
2025-06-08T07:14:10.410137+00:00	Debian Oval Importer	Fixing	VCID-fhgh-jkwa-aaah	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	36.1.0
2025-06-07T18:17:00.478556+00:00	Debian Oval Importer	Fixing	VCID-fhgh-jkwa-aaah	None	36.1.0
2025-06-07T14:24:15.602419+00:00	Debian Oval Importer	Fixing	VCID-kkd1-e4k1-aaam	None	36.1.0
2025-04-08T06:13:33.509956+00:00	Debian Oval Importer	Fixing	VCID-kkd1-e4k1-aaam	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	36.0.0
2025-04-08T05:46:43.625394+00:00	Debian Oval Importer	Fixing	VCID-fhgh-jkwa-aaah	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	36.0.0
2025-04-07T16:54:30.889144+00:00	Debian Oval Importer	Fixing	VCID-fhgh-jkwa-aaah	None	36.0.0
2025-04-07T12:56:43.094950+00:00	Debian Oval Importer	Fixing	VCID-kkd1-e4k1-aaam	None	36.0.0