Vulnerable Package issue exists @ Npm-jquery-3.2.1 in branch master
jQuery can potentially allow remote attackers to conduct Cross-site scripting (XSS) attacks when using methods such as jQuery(), append() and after(). These methods accept an HTML string and can, by design, execute code. This can be avoided by sanitizing inputs when obtained from untrusted sources.
Namespace: srcdevel1
Repository: dvja
Repository Url: https://github.com/srcdevel1/dvja
CxAST-Project: srcdevel1/dvja
CxAST platform scan: 275e3e87-21b4-460d-8d79-5eeebeb21604
Branch: master
Application: dvja
Severity: MEDIUM
State: NOT_IGNORED
Status: RECURRENT
CWE: CWE-79
Addition Info
Attack vector: NETWORK
Attack complexity: LOW
Confidentiality impact: LOW
Availability impact: NONE
References
Disclosure
Advisory
Vulnerable Package issue exists @ Npm-jquery-3.2.1 in branch master
jQuery can potentially allow remote attackers to conduct Cross-site scripting (XSS) attacks when using methods such as jQuery(), append() and after(). These methods accept an HTML string and can, by design, execute code. This can be avoided by sanitizing inputs when obtained from untrusted sources.
Namespace: srcdevel1
Repository: dvja
Repository Url: https://github.com/srcdevel1/dvja
CxAST-Project: srcdevel1/dvja
CxAST platform scan: 275e3e87-21b4-460d-8d79-5eeebeb21604
Branch: master
Application: dvja
Severity: MEDIUM
State: NOT_IGNORED
Status: RECURRENT
CWE: CWE-79
Addition Info
Attack vector: NETWORK
Attack complexity: LOW
Confidentiality impact: LOW
Availability impact: NONE
References
Disclosure
Advisory