CISA Adds Five-Year-Old jQuery XSS Flaw to Exploited Vulnerabilities List



January 24, 2025 at 11:09AM

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Thursday placed a now-patched security flaw impacting the popular jQuery JavaScript library to its Known Exploited Vulnerabilities (KEV) catalog, based on evidence of active exploitation. The medium-severity vulnerability is CVE-2020-11023 (CVSS score: 6.1/6.9), a nearly five-year-old cross-site scripting (XSS) bug that could be

from The Hacker News https://ift.tt/QPEIkcM

Genrerating Link.... 15 seconds.

Your Link is Ready.

Share this post