Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

jquery included in default theme has XSS vulnerability issue #215

Open
puredanger opened this issue May 31, 2023 · 0 comments
Open

jquery included in default theme has XSS vulnerability issue #215

puredanger opened this issue May 31, 2023 · 0 comments

Comments

@puredanger
Copy link

Default theme includes jquery 1.11.0, which has the XSS security issue https://nvd.nist.gov/vuln/detail/cve-2020-11022 as fixed in 3.5.0 (see https://blog.jquery.com/2020/04/10/jquery-3-5-0-released/). If you check codox doc output into your repo, github dependabot will complain at you about this.
@puredanger puredanger changed the title jquery included in default them has XSS vulnerability issue jquery included in default theme has XSS vulnerability issue May 31, 2023
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@puredanger