Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

fix: jquery & bootstrap versions upgrade to fix vulnerables (jquery vulns related to xss and bootstrap vulns related to CVE & Sonatype) #1603

Merged
merged 1 commit into from
Jun 20, 2024
Merged

fix: jquery & bootstrap versions upgrade to fix vulnerables (jquery vulns related to xss and bootstrap vulns related to CVE & Sonatype) #1603

merged 1 commit into from
Jun 20, 2024

Conversation

agonaiah
Copy link

No description provided.

@agonaiah agonaiah changed the title jquery version upgrade to fix vulernerable to xss fix: jquery version upgrade to fix vulernerable to xss Jun 10, 2024
@fabclmnt
Copy link
Contributor

Hi @agonaiah ,

thank you for your contribution. Can you please add more details to your PR? If this is solving any existing open issue also please refer to that.

@agonaiah agonaiah changed the title fix: jquery version upgrade to fix vulernerable to xss fix: jquery & bootstrap versions upgrade to fix vulnerables (jquery vulns related to xss and bootstrap vulns related to CVE & Sonatype) Jun 10, 2024
@agonaiah
Copy link
Author

agonaiah commented Jun 10, 2024
edited
Loading

Hi @agonaiah ,

thank you for your contribution. Can you please add more details to your PR? If this is solving any existing open issue also please refer to that.

Yes jquery version upgrade will address the open issue: #860
bootstrap version upgrade to fix the below vulns:

CVE-2018-14042
CVE-2018-20677
CVE-2018-14040
CVE-2018-20676
CVE-2019-8331
sonatype-2018-0607
sonatype-2017-0695
sonatype-2016-0129

@agonaiah
Copy link
Author

agonaiah commented Jun 18, 2024
edited
Loading

fabclmnt duartecsoares alexbarros please help to review

@portellaa
fix: jquery & bootstrap versions upgrade to fix vulnerables (jquery v…
35f9306 
…ulns related to xss and bootstrap vulns related to CVE & Sonatype)
@fabclmnt fabclmnt linked an issue Jun 20, 2024 that may be closed by this pull request
Cross-site scripting (XSS) vulnerability CVE-2024-37063 #1599
Closed
3 tasks
@fabclmnt
Copy link
Contributor

Hi @agonaiah ,

thank you for all the details provided. We have approved your PR and merged it.

It will be included in the next release.

@agonaiah
Copy link
Author

Hi @agonaiah ,

thank you for all the details provided. We have approved your PR and merged it.

It will be included in the next release.

Thank you

@fabclmnt fabclmnt merged commit 7032adb into ydataai:develop Jun 20, 2024
12 of 14 checks passed
This was referenced Jul 8, 2024
Merged
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@portellaa portellaa portellaa approved these changes

@fabclmnt fabclmnt fabclmnt approved these changes

@duartecsoares duartecsoares Awaiting requested review from duartecsoares

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

Cross-site scripting (XSS) vulnerability CVE-2024-37063
3 participants
@agonaiah @fabclmnt @portellaa