github-actions[bot]
commented
3 months ago Issue still exists.
Open github-actions[bot] opened 3 months ago
github-actions[bot]
commented
3 months ago Issue still exists.
Description
jQuery before 3.0.0-beta1 is vulnerable to Cross-site Scripting (XSS) attacks when a cross-domain Ajax request is performed without the dataType option, causing text/javascript responses to be executed.
MEDIUM Vulnerable Package issue exists @ jquery in branch master
Vulnerability ID: CVE-2015-9251
Package Name: jquery
Severity: MEDIUM
CVSS Score: 6.1
Publish Date: 2018-01-18T23:29:00
Current Package Version: 1.11.0
Remediation Upgrade Recommendation: 3.5.0
Link To SCA
Reference – NVD link