RSS Feed
At least 60% of all websites are impacted by jQuery XSS vulnerabilities
Posted by Esvon Support on 30 January 2020 04:39 PM

Unless you are using jQuery 3.4+ then you are using vulnerable jQuery versions.

These findings come from open source security platform, Snyk, and are included in "The state of JavaScript frameworks security report 2019"

In jQuery Snyk tracked six security vulnerabilities affecting jQuery across all of its releases to date. Four are medium severity Cross-Site Scripting vulnerabilities, one is a medium severity Prototype Pollution vulnerability, and the final one is a low severity Denial of Service vulnerability. 

More Information

Snyk Javascript Report 2019 (pdf)

Help Desk Software by Kayako Fusion