Description
Cross-site scripting (XSS) vulnerability in the DataTables plugin 1.10.8 and earlier for jQuery allows remote attackers to inject arbitrary web script or HTML via the scripts parameter to media/unit_testing/templates/6776.php.
Remediation
References
Related Vulnerabilities
Apache Traffic Server Improper Input Validation Vulnerability (CVE-2021-37149)
MediaWiki Improper Encoding or Escaping of Output Vulnerability (CVE-2020-10960)
Squid Out-of-bounds Write Vulnerability (CVE-2019-12527)
Chamilo Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2018-1999019)
WordPress Plugin Resume Submissions & Job Postings Arbitrary File Upload (2.5.3)