Entreprise française de cybersécurité depuis 2004
☎ 03 60 47 09 81 - info@securiteinfo.com
☎ 03 60 47 09 81 - info@securiteinfo.com
Cross-site scripting (XSS) vulnerability in jQuery before 1.6.3, when using location.hash to select elements, allows remote attackers to inject arbitrary web script or HTML via a crafted tag.
- http://bugs.jquery.com/ticket/9521
- https://github.com/BroDaber/kitcat
- https://github.com/FallibleInc/retirejslib
- https://github.com/catsploit/catsploit
- https://github.com/ctcpip/jquery-security
- https://github.com/eliasgranderubio/4depcheck
- https://github.com/jquery-lts/jquery-lts
- https://github.com/mahp/jQuery-with-XSS