Update jPlayer vuln

RetireJS · Apr 8, 2024 · 3f36fa6 · 3f36fa6
1 parent a4d3668
commit 3f36fa6
Show file tree

Hide file tree

Showing 3 changed files with 22 additions and 22 deletions.
diff --git a/repository/jsrepository-master.json b/repository/jsrepository-master.json
@@ -873,13 +873,13 @@
       {
         "ranges": [
           {
-            "below": "2.3.23"
+            "below": "2.3.0"
           }
         ],
         "summary": "XSS vulnerabilities in actionscript/Jplayer.as in the Flash SWF component",
         "identifiers": {
           "CVE": ["CVE-2013-2022"],
-          "release": "2.3.23"
+          "githubID": "GHSA-3jcq-cwr7-6332"
         },
         "severity": "medium",
         "cwe": ["CWE-79"],

diff --git a/repository/jsrepository-v2.json b/repository/jsrepository-v2.json
@@ -1024,39 +1024,39 @@
         ]
       },
       {
-        "below": "2.3.1",
+        "below": "2.3.0",
         "severity": "medium",
         "cwe": [
           "CWE-79"
         ],
         "identifiers": {
-          "summary": "XSS vulnerability in actionscript/Jplayer.as in the Flash SWF component",
+          "summary": "XSS vulnerabilities in actionscript/Jplayer.as in the Flash SWF component",
           "CVE": [
-            "CVE-2013-2023"
+            "CVE-2013-2022"
           ],
-          "release": "2.3.1"
+          "githubID": "GHSA-3jcq-cwr7-6332"
         },
         "info": [
           "http://jplayer.org/latest/release-notes/",
-          "https://nvd.nist.gov/vuln/detail/CVE-2013-2023"
+          "https://nvd.nist.gov/vuln/detail/CVE-2013-2022"
         ]
       },
       {
-        "below": "2.3.23",
+        "below": "2.3.1",
         "severity": "medium",
         "cwe": [
           "CWE-79"
         ],
         "identifiers": {
-          "summary": "XSS vulnerabilities in actionscript/Jplayer.as in the Flash SWF component",
+          "summary": "XSS vulnerability in actionscript/Jplayer.as in the Flash SWF component",
           "CVE": [
-            "CVE-2013-2022"
+            "CVE-2013-2023"
           ],
-          "release": "2.3.23"
+          "release": "2.3.1"
         },
         "info": [
           "http://jplayer.org/latest/release-notes/",
-          "https://nvd.nist.gov/vuln/detail/CVE-2013-2022"
+          "https://nvd.nist.gov/vuln/detail/CVE-2013-2023"
         ]
       }
     ],

diff --git a/repository/jsrepository.json b/repository/jsrepository.json
@@ -1010,39 +1010,39 @@
         ]
       },
       {
-        "below": "2.3.1",
+        "below": "2.3.0",
         "severity": "medium",
         "cwe": [
           "CWE-79"
         ],
         "identifiers": {
-          "summary": "XSS vulnerability in actionscript/Jplayer.as in the Flash SWF component",
+          "summary": "XSS vulnerabilities in actionscript/Jplayer.as in the Flash SWF component",
           "CVE": [
-            "CVE-2013-2023"
+            "CVE-2013-2022"
           ],
-          "release": "2.3.1"
+          "githubID": "GHSA-3jcq-cwr7-6332"
         },
         "info": [
           "http://jplayer.org/latest/release-notes/",
-          "https://nvd.nist.gov/vuln/detail/CVE-2013-2023"
+          "https://nvd.nist.gov/vuln/detail/CVE-2013-2022"
         ]
       },
       {
-        "below": "2.3.23",
+        "below": "2.3.1",
         "severity": "medium",
         "cwe": [
           "CWE-79"
         ],
         "identifiers": {
-          "summary": "XSS vulnerabilities in actionscript/Jplayer.as in the Flash SWF component",
+          "summary": "XSS vulnerability in actionscript/Jplayer.as in the Flash SWF component",
           "CVE": [
-            "CVE-2013-2022"
+            "CVE-2013-2023"
           ],
-          "release": "2.3.23"
+          "release": "2.3.1"
         },
         "info": [
           "http://jplayer.org/latest/release-notes/",
-          "https://nvd.nist.gov/vuln/detail/CVE-2013-2022"
+          "https://nvd.nist.gov/vuln/detail/CVE-2013-2023"
         ]
       }
     ],