VulnerableCode Package Details - pkg:nuget/jquery@1.12.3

Search for packages

Vulnerability	Summary	Fixed by
VCID-bm85-uen1-aaab Aliases: CVE-2019-5428 GHSA-wv67-q8rr-grjp	REJECT DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2019-11358. Reason: This candidate is a duplicate of CVE-2019-11358. Notes: All CVE users should reference CVE-2019-11358 instead of this candidate. All references and descriptions in this candidate have been removed to prevent accidental usage.	3.4.0 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }}
VCID-kkd1-e4k1-aaam Aliases: CVE-2020-11022 GHSA-gxr4-xjj5-5px2	In jQuery versions greater than or equal to 1.2 and before 3.5.0, passing HTML from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. .html(), .append(), and others) may execute untrusted code. This problem is patched in jQuery 3.5.0.	3.5.0 Affected by 0 other vulnerabilities.

Vulnerability

Summary

Fixed by

VCID-bm85-uen1-aaab
Aliases:
CVE-2019-5428
GHSA-wv67-q8rr-grjp

** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2019-11358. Reason: This candidate is a duplicate of CVE-2019-11358. Notes: All CVE users should reference CVE-2019-11358 instead of this candidate. All references and descriptions in this candidate have been removed to prevent accidental usage.

3.4.0
Affected by 1 other vulnerability.

VCID-kkd1-e4k1-aaam
Aliases:
CVE-2020-11022
GHSA-gxr4-xjj5-5px2

In jQuery versions greater than or equal to 1.2 and before 3.5.0, passing HTML from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. .html(), .append(), and others) may execute untrusted code. This problem is patched in jQuery 3.5.0.

3.5.0
Affected by 0 other vulnerabilities.

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Vulnerability

Summary

Aliases

This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2025-06-20T14:37:34.614947+00:00	GitLab Importer	Affected by	VCID-kkd1-e4k1-aaam	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/nuget/jquery/CVE-2020-11022.yml	36.1.3
2025-06-20T14:37:24.556657+00:00	GitLab Importer	Affected by	VCID-kkd1-e4k1-aaam	None	36.1.3
2025-06-03T21:21:25.135260+00:00	GitLab Importer	Affected by	VCID-kkd1-e4k1-aaam	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/nuget/jquery/CVE-2020-11022.yml	36.1.0
2025-06-03T21:21:15.258273+00:00	GitLab Importer	Affected by	VCID-kkd1-e4k1-aaam	None	36.1.0
2025-06-02T21:03:03.361137+00:00	GitLab Importer	Affected by	VCID-kkd1-e4k1-aaam	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/nuget/jquery/CVE-2020-11022.yml	36.1.2
2025-06-02T21:02:51.607970+00:00	GitLab Importer	Affected by	VCID-kkd1-e4k1-aaam	None	36.1.2
2025-04-03T17:36:43.636306+00:00	GitLab Importer	Affected by	VCID-kkd1-e4k1-aaam	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/nuget/jquery/CVE-2020-11022.yml	36.0.0
2025-04-03T17:36:24.894759+00:00	GitLab Importer	Affected by	VCID-kkd1-e4k1-aaam	None	36.0.0
2025-02-18T06:28:41.858083+00:00	GitLab Importer	Affected by	VCID-kkd1-e4k1-aaam	None	35.1.0
2025-02-18T06:28:40.441741+00:00	GitLab Importer	Affected by	VCID-kkd1-e4k1-aaam	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/nuget/jquery/CVE-2020-11022.yml	35.1.0
2024-10-07T18:16:03.400008+00:00	GHSA Importer	Affected by	VCID-kkd1-e4k1-aaam	https://github.com/advisories/GHSA-gxr4-xjj5-5px2	34.0.2
2024-10-07T18:11:57.164340+00:00	GHSA Importer	Affected by	VCID-bm85-uen1-aaab	https://github.com/advisories/GHSA-wv67-q8rr-grjp	34.0.2
2024-09-22T18:58:42.692034+00:00	GHSA Importer	Affected by	VCID-kkd1-e4k1-aaam	https://github.com/advisories/GHSA-gxr4-xjj5-5px2	34.0.1
2024-09-22T18:54:43.884083+00:00	GHSA Importer	Affected by	VCID-bm85-uen1-aaab	https://github.com/advisories/GHSA-wv67-q8rr-grjp	34.0.1
2024-04-24T05:21:50.145240+00:00	GitLab Importer	Affected by	VCID-kkd1-e4k1-aaam	None	34.0.0rc4
2024-04-24T05:21:49.286126+00:00	GitLab Importer	Affected by	VCID-kkd1-e4k1-aaam	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/nuget/jquery/CVE-2020-11022.yml	34.0.0rc4
2024-04-23T19:57:12.604760+00:00	GHSA Importer	Affected by	VCID-kkd1-e4k1-aaam	https://github.com/advisories/GHSA-gxr4-xjj5-5px2	34.0.0rc4
2024-04-23T19:57:10.098515+00:00	GHSA Importer	Affected by	VCID-kkd1-e4k1-aaam	None	34.0.0rc4
2024-04-23T19:46:18.810197+00:00	GHSA Importer	Affected by	VCID-bm85-uen1-aaab	None	34.0.0rc4
2024-04-23T19:46:17.279672+00:00	GHSA Importer	Affected by	VCID-bm85-uen1-aaab	https://github.com/advisories/GHSA-wv67-q8rr-grjp	34.0.0rc4
2024-01-10T07:53:29.444529+00:00	GitLab Importer	Affected by	VCID-kkd1-e4k1-aaam	None	34.0.0rc2
2024-01-10T07:53:28.799980+00:00	GitLab Importer	Affected by	VCID-kkd1-e4k1-aaam	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/nuget/jquery/CVE-2020-11022.yml	34.0.0rc2
2024-01-09T21:48:08.649407+00:00	GHSA Importer	Affected by	VCID-kkd1-e4k1-aaam	https://github.com/advisories/GHSA-gxr4-xjj5-5px2	34.0.0rc2
2024-01-09T21:48:06.776900+00:00	GHSA Importer	Affected by	VCID-kkd1-e4k1-aaam	None	34.0.0rc2
2024-01-09T21:37:57.323513+00:00	GHSA Importer	Affected by	VCID-bm85-uen1-aaab	None	34.0.0rc2
2024-01-09T21:37:55.147424+00:00	GHSA Importer	Affected by	VCID-bm85-uen1-aaab	https://github.com/advisories/GHSA-wv67-q8rr-grjp	34.0.0rc2
2024-01-04T00:38:36.762059+00:00	GitLab Importer	Affected by	VCID-kkd1-e4k1-aaam	None	34.0.0rc1
2024-01-04T00:38:36.093852+00:00	GitLab Importer	Affected by	VCID-kkd1-e4k1-aaam	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/nuget/jquery/CVE-2020-11022.yml	34.0.0rc1
2024-01-03T16:35:33.278562+00:00	GHSA Importer	Affected by	VCID-kkd1-e4k1-aaam	None	34.0.0rc1
2024-01-03T16:29:39.239447+00:00	GHSA Importer	Affected by	VCID-bm85-uen1-aaab	None	34.0.0rc1

2025-06-20T14:37:34.614947+00:00

GitLab Importer

Affected by

Next non-vulnerable version	3.5.0
Latest non-vulnerable version	3.5.0
Risk	10.0