Description

Cross-site scripting (XSS) vulnerability in the DataTables plugin 1.10.8 and earlier for jQuery allows remote attackers to inject arbitrary web script or HTML via the scripts parameter to media/unit_testing/templates/6776.php.

Remediation

References

CVE-2015-6584

Related Vulnerabilities

WordPress Plugin Leaky Paywall Cross-Site Scripting (4.16.5)

Perl Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2017-12883)

WordPress Plugin Analytics Stats Counter Statistics PHP Object Injection (1.2.2.5)

WordPress Plugin BackWPup Cross-Site Scripting (3.0.12)

Oracle JRE CVE-2023-21830 Vulnerability (CVE-2023-21830)

Severity

Medium

Classification

CVE-2015-6584

Tags

Missing Update Known Vulnerabilities