Cross Site Scripting vulnerability in jQuery 2.2.0 through 3.x before 3.5.0
allows a remote attacker to execute arbitrary code via the <options>
element.
Author | Note |
---|---|
mdeslaur | This is a backwards-incompatible change that breaks existing software. See the upgrade guide for more info: https://jquery.com/upgrade-guide/3.5/ This may be a dupe of CVE-2020-11023 |