JQuery XSS vulnerabilities

General Questions

Last Post by Marco Tiggelaar 4 years ago

2 Posts

2 Users

0 Reactions

1,641 Views

RSS

Posts: 1

pargddy

Topic starter

Mar 23, 2021 11:32 am

(@pargddy)

New Member

Joined: 4 years ago

We had recently had pentesting done on servers running the SolidCP v1.4.7 and were made aware of multiple XSS vulnerabilities in the JQuery v2.1.0 been used in SolidCP. Can someone advise if there are any plans to use a newer version of JQuery or if the vulnerability does not affect the control panel?

Thanks

😀

Topic Tags

security

1 Reply

Posts: 1967

Marco Tiggelaar

Admin

Mar 23, 2021 2:33 pm

(@m-tiggelaar)

Noble Member

Joined: 9 years ago

Helo,

We are aware of some xss vonerabilities that could be used on specific pages of the control panel, which a fix is being worked on.

I will double check the jquery xss vonerability aswell.

The security patches will be part of SolidCP's next release scheduled before end of April.

Regards,

Marco

Forum Jump:

Previous Topic

Next Topic

2 Forums
2,188 Topics
10 K Posts
1 Online
3,533 Members

Forum Icons: Forum contains no unread posts Forum contains unread posts

Topic Icons: Not Replied Replied Active Hot Sticky Unapproved Solved Private Closed