While ownCloud is using an older version of jQuery, we have fixed the known vulnerabilities in the patches listed below. We closely follow any security related news regarding the library for any new issues.
|The jQuery version shipped inside ownCloud is secure.|
Note that automatic scanners may still report false positives even if the CVE’s have been addressed as the scanners just look at the jQuery version shipped.
CVE-2021-41182, CVE-2021-41183 and CVE-2021-41184
patched in 10.9.0
If you know about any issues which were not patched yet or which are not included in this list please notify us at firstname.lastname@example.org.