| name | jQuery File Upload library with known vulnerabilities | ||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|
| severity | low | ||||||||||
| cvss-score | 4.8 | ||||||||||
| cvss-vector | CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N | ||||||||||
| cwe-id | CWE-1035 | ||||||||||
| cwe-name | OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities | ||||||||||
| compliance |
|
The application uses an outdated version of the jQuery File Upload library, which has known vulnerabilities.
{% tabs jquery-file-upload-library-with-known-vulnerabilities %} {% tab jquery-file-upload-library-with-known-vulnerabilities generic %} To fix this issue, please update jQuery File Upload to the latest available version on its official website.
Do not forget to update all the jQuery File Upload files you have on the server. {% endtab %}
{% endtabs %}