jQuery Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability - CVE-2015-9251 - Vulnerability Database

jQuery

jQuery Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability - CVE-2015-9251

Medium

Reference: CVE-2015-9251

NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2015-9251

Title: jQuery Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability

Overview:

jQuery before 3.0.0 is vulnerable to Cross-site Scripting (XSS) attacks when a cross-domain Ajax request is performed without the dataType option causing text/javascript responses to be executed.