jQuery bugs

Info

Jquery is based on the Javascript UI framework, it provides a way to minulipate the DOM's functions.
It allows the DOM (webpage) to be updated without a broweser refresh to help keep content active.

jQuery Bug checking tool

Bug Checker

Bugs

Bug 9521 - `$("#<img src=x onerror=...>")`

Example

Bug 11290 - `$("element[attribute='<img src=x onerror=...>'")`

Example

jQuery issue 2432 - 3rd party $.get() auto executes if content type is text/javascript

Example

jQuery issue 11974 - parseHTML executes inline scripts like event handlers

Example

jQuery issue 4642 - htmlPrefilter unwraps things it shouldn't

-- ToDo

jQuery issue 4647 - select/option wrapping unwraps can cause XSS

Example

th3cyb3rc0p / jQuery_Exploits

jQuery bugs

Info

jQuery Bug checking tool

Bugs

Bug 9521 - `$("#<img src=x onerror=...>")`

Bug 11290 - `$("element[attribute='<img src=x onerror=...>'")`

jQuery issue 2432 - 3rd party $.get() auto executes if content type is text/javascript

jQuery issue 11974 - parseHTML executes inline scripts like event handlers

jQuery issue 4642 - htmlPrefilter unwraps things it shouldn't

jQuery issue 4647 - select/option wrapping unwraps can cause XSS

About

jQuery bugs

Info

jQuery Bug checking tool

Bugs

Bug 9521 - $("#<img src=x onerror=...>")

Bug 11290 - $("element[attribute='<img src=x onerror=...>'")

jQuery issue 2432 - 3rd party $.get() auto executes if content type is text/javascript

jQuery issue 11974 - parseHTML executes inline scripts like event handlers

jQuery issue 4642 - htmlPrefilter unwraps things it shouldn't

jQuery issue 4647 - select/option wrapping unwraps can cause XSS

About

Bug 9521 - `$("#<img src=x onerror=...>")`

Bug 11290 - `$("element[attribute='<img src=x onerror=...>'")`