Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Versions of the package jquery-validation before 1.20.0 are vulnerable to Cross-site Scripting (XSS) in the showLabel() function, which may take input from a user-controlled placeholder value. This value will populate a message via $.validator.messages in a user localizable dictionary.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
Vulnerability Type
在Web页面生成时对输入的转义处理不恰当(跨站脚本)
Vulnerability Title
jquery-validation 安全漏洞
Vulnerability Description
jquery-validation是jquery-validation开源的一个工具。为表单提供插入式验证,同时使各种定制以适合您的应用程序非常容易。 jquery-validation 1.20.0之前版本存在安全漏洞,该漏洞源于showLabel函数对用户控制的占位符值处理不当,可能导致跨站脚本攻击。
CVSS Information
N/A
Vulnerability Type
N/A