From 019ae426f22b1d7cf2eab13eeeb9bbdac4166524 Mon Sep 17 00:00:00 2001 From: zapbot <12745184+zapbot@users.noreply.github.com> Date: Mon, 14 Aug 2023 01:55:53 +0000 Subject: [PATCH] retire.js Update 2023-08-14 Updates based on RetireJS/retire.js@26620e4 Signed-off-by: zapbot <12745184+zapbot@users.noreply.github.com> --- .../addon/retire/resources/jsrepository.json | 29 ++++++++++++++++++- 1 file changed, 28 insertions(+), 1 deletion(-) diff --git a/addOns/retire/src/main/resources/org/zaproxy/addon/retire/resources/jsrepository.json b/addOns/retire/src/main/resources/org/zaproxy/addon/retire/resources/jsrepository.json index 8ae02f38dfe..5573aa54841 100644 --- a/addOns/retire/src/main/resources/org/zaproxy/addon/retire/resources/jsrepository.json +++ b/addOns/retire/src/main/resources/org/zaproxy/addon/retire/resources/jsrepository.json @@ -301,7 +301,7 @@ }, { "below": "1.19.4", - "severity": "medium", + "severity": "low", "cwe": ["CWE-1333"], "identifiers": { "CVE": ["CVE-2021-43306"], @@ -717,6 +717,33 @@ } } }, + "tableexport.jquery.plugin": { + "vulnerabilities": [ + { + "below": "1.25.0", + "severity": "medium", + "cwe": ["CWE-79"], + "identifiers": { + "summary": "There is a cross-site scripting vulnerability with default `onCellHtmlData`", + "githubID": "GHSA-j636-crp3-m584", + "CVE": ["CVE-2022-1291"] + }, + "info": [ + "https://github.com/hhurz/tableexport.jquery.plugin/commit/dcbaee23cf98328397a153e71556f75202988ec9" + ] + } + ], + "extractors": { + "uri": [ + "/tableexport.jquery.plugin@(§§version§§)/tableExport.min.js", + "/TableExport/(§§version§§)/js/tableexport.min.js" + ], + "filecontent": [ + "/\\*[\\s]+tableExport.jquery.plugin[\\s]+Version (§§version§§)", + "/\\*![\\s]+\\* TableExport.js v(§§version§§)" + ] + } + }, "jPlayer": { "bowername": ["jPlayer"], "npmname": "jplayer",