Inadequate/dangerous jQuery behavior

Disclosed: 2017-04-05 19:54:51 By mhashim29 To gratipay

Low

Vulnerability Details

Every text/javascript response gets executed. JQuery 1.10.2 is vulnerable and executes response received. https://assets.gratipay.com/jquery.min.js?etag=YoBy5yEtsejNrLIrIXUs2g~~ https://github.com/jquery/jquery/issues/2432

Actions

View on HackerOne

Report Stats

Report ID: 211149
State: Closed
Substate: resolved
Upvotes: 7

Inadequate/dangerous jQuery behavior

Vulnerability Details

Actions

Report Stats

Share this report