Description
Cross-site scripting (XSS) vulnerability in jQuery before 1.6.3, when using location.hash to select elements, allows remote attackers to inject arbitrary web script or HTML via a crafted tag.
Remediation
References
Related Vulnerabilities
Chamilo Improper Privilege Management Vulnerability (CVE-2020-23128)
Liferay DXP CVE-2021-33330 Vulnerability (CVE-2021-33330)
Python Use After Free Vulnerability (CVE-2022-48560)
WordPress Plugin Sidebar Login Cross-Site Scripting (2.3.6)
Moodle Generation of Error Message Containing Sensitive Information Vulnerability (CVE-2024-48896)