Cross site scripting vulnerability in jPlayer SWF

Description

jPlayer is the completely free and open source (MIT) media library written in JavaScript. Multiple cross site scripting vulnerabilities were reported in older versions of the jPlayer SWF that may allow an attacker to execute arbitrary Javascript code.

Remediation

Upgrade to the latest version of jPlayer.

References