JQuery 1.x < 1.12.0 / 2.x < 2.2.0 XSS
Medium Nessus Plugin ID 106657
SynopsisThe remote web server is affected by a cross site scripting vulnerability.
DescriptionAccording to the self-reported version in the script, the version of JQuery hosted on the remote web server is 1.x prior to 1.12.0 or 2.x prior to 2.2.0. It is, therefore, affected by a cross site scripting vulnerability when using location.host to select elements.
SolutionUpgrade to JQuery version 1.12.0 or later.