Open Closed

Cross-Site Scripting vulnerability in the jquery-form 4.3.0 #2844


User avatar
0
nhontran created

Hi, can we confirm that the following is the security fix for Cross-Site Scripting vulnerability in the jquery-form 4.3.0 ?

The fixed version is available here: https://github.com/jquery-form/form/pull/586/files


2 Answer(s)
  • User Avatar
    0
    nhontran created

    Hi, our current version is v3.3.2. We are not upgrading to the latest version just yet. And we need to address this vulnerability asap. Can you confirm on this, please?

  • User Avatar
    0
    maliming created
    Support Team Fullstack Developer

    hi

    I think you can copy the src/jquery.form.js in the pr to your project.

    https://docs.abp.io/en/abp/latest/Virtual-File-System#replacing-overriding-virtual-files

Made with ❤️ on ABP v9.1.0-preview. Updated on December 13, 2024, 06:09