Welcome to the Inedo Forums! Check out the Forums Guide for help getting started.

If you are experiencing any issues with the forum software, please visit the Contact Form on our website and let us know!

Vulnerability JQuery Proget 5.2.14



  • Our Qualys system reported me a vulnerability because of an old version of jquey this Proget version is using: /resources/InedoLibWeb/jquery-1.11.3.min.js

    I hope it is possible to do an upgrade of jquery itself instead of upgrading full Proget from 5.2.14 to Proget2024, because this is more complex and could have some breaking changes, I read.
    So my question and I hope somebody could help me out with this:
    how to upgrade JQuery on my Proget (window2019) server to the most recent version?


  • inedo-engineer

    Hi @r-vanmeurs_4680 ,

    This is a false positive and you can disregard it; ProGet 5.2 is not impacted by the vulnerability in JQuery for may reasons, including the fact that they vulnerable code is not used and, if it were, ProGet is protected on the server-side from such "attacks".

    Thanks,
    Steve



  • Thanks for answering me, clear !


Log in to reply
 

Inedo Website HomeSupport HomeCode of ConductForums GuideDocumentation