Arbitrary Script Injection Vulnerability in jQuery UI Dialog Function

Arbitrary Script Injection Vulnerability in jQuery UI Dialog Function

CVE-2016-7103 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Cross-site scripting (XSS) vulnerability in jQuery UI before 1.12.0 might allow remote attackers to inject arbitrary web script or HTML via the closeText parameter of the dialog function.

Learn more about our Web App Pen Testing.