You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
There is a flaw in the jQuery.htmlPrefilter method that is used when displaying elements constructed with the jQuery('') technique. Vulnerable applications passing untrusted data into this method may be vulnerable to cross-site scripting attacks. An attacker can abuse this to attack the user, gain access to their private data, and execute application features with the victim's privileges.
jQuery < 3.5.0 Cross-Site Scripting
There is a flaw in the jQuery.htmlPrefilter method that is used when displaying elements constructed with the jQuery('') technique. Vulnerable applications passing untrusted data into this method may be vulnerable to cross-site scripting attacks. An attacker can abuse this to attack the user, gain access to their private data, and execute application features with the victim's privileges.
https://blog.jquery.com/2020/04/10/jquery-3-5-0-released/
The text was updated successfully, but these errors were encountered: