jQuery UI < 1.12.0 Cross-Site Scripting
Medium Web Application Scanning Plugin ID 98393
SynopsisjQuery UI < 1.12.0 Cross-Site Scripting
DescriptionAccording to its self-reported version number, jQuery UI is prior to 1.12.0. Therefore, it may be affected by a cross-site scripting vulnerability due to improper escaping of the closeText property.
Note that the scanner has not tested for these issues but has instead relied only on the application's self-reported version number.
SolutionUpgrade to jQuery UI version 1.12.0 or later.