CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2021-36713

Cross Site Scripting (XSS) vulnerability in the DataTables plug-in 1.9.2 for jQuery allows attackers to run arbitrary code via the sBaseName parameter to function _fnCreateCookie. NOTE: 1.9.2 is a version from 2012.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 42.1%

CVSS Severity

CVSS v3 Score 6.1

References

https://cdn.datatables.net/1.9.2/js/jquery.dataTables.js
https://gist.github.com/walhajri/711af9b62f6fb25e66a5d9a490deab98
https://security.netapp.com/advisory/ntap-20230406-0003/
https://cdn.datatables.net/1.9.2/js/jquery.dataTables.js
https://gist.github.com/walhajri/711af9b62f6fb25e66a5d9a490deab98
https://security.netapp.com/advisory/ntap-20230406-0003/

Products affected by CVE-2021-36713

Sprymedia » Datatables » Version: 1.9.2

cpe:2.3:a:sprymedia:datatables:1.9.2

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-36713

Products

Pricing

Contact Us