Skip to Content (Press Enter)
2024-11-07 04-37-59
Siripornthavee Nuntasukhon
222Views
1Comments
Jquery Version Upgrade
Question
Mobile
JQuery
Security
Traditional Web
Application Type
Traditional Web, Mobile
Platform Version
11.9.0 (Build 17011)

Hello,


Our application is detected by Security scan for go-live about JQuery Version number by following information

SeverityPlugin IdNameFamilyInstances

Medium

112432jQuery 1.7.1 < 1.9.0 Cross-Site ScriptingComponent Vulnerability1

Medium

112434jQuery 1.4.0 < 1.12.0 Cross-Site ScriptingComponent Vulnerability1

Medium

98590jQuery < 3.4.0 Prototype PollutionComponent Vulnerability1


So, I would like to upgrade The version of JQuery to solve them.

Could you please suggest how to fix this problem?


Best regards, 

Technical Team Spheresoft



1
0
04 Mar 2021
Copy Link
2021-08-12 11-00-27
Nordin Ahdi
 
MVP

Hi Technical Team Spheresoft,

Please read through this documentation with regard to penetration testing and the false positive findings around the jQuery version the platform uses.

Furthermore, it is not possible to upgrade the platform's default jQuery version 1.8.3 since there is a chance it would break existing functionality.

You could however integrate a plugin for a recent jQuery version following the steps mentioned in this How-To post.

Hope this helps!

Regards,

Nordin

0
0
04 Mar 2021
Copy Link
Community GuidelinesBe kind and respectful, give credit to the original source of content, and search for duplicates before posting.