locked
How to update version of JQuery and Bootstrap on SSRS2016 RRS feed

 > 

  • Question

  • Question
    Sign in to vote
    0
    Sign in to vote

    Hi, we have a security issue using SSRS2016 on JQuery 3.3.1 and Bootstrap 3.3.5. Is there any way to update both version or find out which version are related to our installation of SSRS2016?

    Many thanks,

    Ricardo.

    • Edited by Ricardo FL Wednesday, April 1, 2020 1:13 PM
    Wednesday, April 1, 2020 1:12 PM

All replies

  • Question
    Sign in to vote
    1
    Sign in to vote

    Hello Ricardo FL,

    Could you show the security issue message?

    I am not sure, hope this linkage will help:https://github.com/microsoft/sql-server-samples/tree/master/samples/features/json/product-catalog/nodejs-jquery-bootstrap-app

    MSDN Community Support
    Please remember to click "Mark as Answer" the responses that resolved your issue, and to click "Unmark as Answer" if not. This can be beneficial to other community members reading this thread. If you have any compliments or complaints to MSDN Support, feel free to contact MSDNFSF@microsoft.com.

    Thursday, April 2, 2020 6:18 AM
  • Question
    Sign in to vote
    0
    Sign in to vote

    Hi, this is the security issue message.

    "The application uses vulnerable Jquery  3.3.1 and Bootstrap 3.3.5  version in developing the application. An attacker may use the vulnerable JavaScript framework version to perform malicious attacks in the application"

    Thursday, April 2, 2020 8:24 AM
  • Question
    Sign in to vote
    1
    Sign in to vote

    Hello Ricardo FL,

    Thanks for your feedback.

    After doing some research, it is recommend you to upgrade Jquery 3.4 higher and Bootstrap 4.0 higher. More detail, you can refer to https://snyk.io/vuln/SNYK-JS-JQUERY-174006 & https://snyk.io/test/npm/bootstrap/3.3.5

    Here you can download the latest release of Bootstrap @ 4.4.1 and jQuery 3.4.0

    I am not good at developing, hope this will help. May others give your some more professional suggestion. Thanks.

    MSDN Community Support
    Please remember to click "Mark as Answer" the responses that resolved your issue, and to click "Unmark as Answer" if not. This can be beneficial to other community members reading this thread. If you have any compliments or complaints to MSDN Support, feel free to contact MSDNFSF@microsoft.com.


    Friday, April 3, 2020 7:56 AM
  • Question
    Sign in to vote
    0
    Sign in to vote

    Hi,

    Thanks for the answer, but we need to update the version that uses SSRS not the stand-alone versions of JQuery and Bootstrap

    Tuesday, May 19, 2020 11:15 AM
  • Question
    Sign in to vote
    0
    Sign in to vote

    The question is.... will the installation of these new version of Jquery and Bootstrap brake SSRS 2016?

    Or will installations update the references in SSRS to these libraries?

    Thursday, August 20, 2020 8:10 AM