View Issue Details

IDProjectCategoryView StatusLast Update
0019831phpList 3 applicationSecuritypublic19-07-19 16:37
ReportersamtukeAssigned To 
PrioritynormalSeverityminorReproducibilityhave not tried
Status resolvedResolutionfixed 
Product Version3.3.9 
Fixed in Version3.4.1 
Summary0019831: Upgrade jQuery UI 1.8.1 to latest
DescriptionReported by kgarland in the forum:

I’m noticing that PHPList is using Jquery UI Version 1.8.1, however, there is a XSS vulnerability for using versions lower than 1.10.0 2

Locations I could find:

TagsNo tags attached.



18-03-19 08:57

developer   ~0062018

These files are used when there is no theme available only.