Cross-site scripting (XSS) vulnerability
Hello,
We are using jQuery 1.6.2 and with other plugins listed below:
jquery.dataTables
fileUploader
jquery.layout-latest
jquery.multiselect
jquery.raty
jquery.tokeninput
jquery.tools
jquery.ui.combobox
jquery-1.6.2
slides.min.jquery
jquery-ui-1.8.16.custom
issue # 1:
Cross-site scripting (XSS) vulnerability in jQuery before 1.6.3, when using location.hash to select elements, allows remote attackers to inject arbitrary web script or HTML via a crafted tag
Can you suggest, to which version of jQuery we need to upgrade to solve the Cross-site scripting (XSS) vulnerability and the compatible versions for the other plug-ins ?