Atozed Forums Atozed Software IntraWeb English IntraWeb General Discussion v
jQuery used by the application is vulnerable to C VE-2012-6708 and C VE-2015-9251

Thread Rating:
  • 0 Vote(s) - 0 Average
  • 1
  • 2
  • 3
  • 4
  • 5
Linear Mode
jQuery used by the application is vulnerable to C VE-2012-6708 and C VE-2015-9251
zsleo Offline
Member
***
Posts: 100
Threads: 20
Joined: Mar 2018
Reputation: 1
#5
08-04-2021, 10:06 PM
(08-04-2021, 08:04 AM)Alexandre Machado Wrote: BTW, vulnerabilities of jQuery are extremely overrated by auditors... The reality is: if someone can break into your HTTPS connection, nothing will protect you from whatever they have. They don't need to play with jQuery to steal your data and redirect you to a fake web site... But... auditors are here to make money, right?

Alexandre,

I have to agree with you.

We are in the middle of annual PCI recertification and strong and valid arguments to the auditors is required when they present high status security fails that are not based upon reality or real operation of the technology.

It can very frustrating...

My 2 cents spent...
Find
Reply


Messages In This Thread
RE: jQuery used by the application is vulnerable to C VE-2012-6708 and C VE-2015-9251 - by zsleo - 08-04-2021, 10:06 PM

Forum Jump:


Users browsing this thread: 1 Guest(s)