Post from 2025-01-24 07:47:47
This is new: CISA KEV adds an XSS vulnerability!
https://www.cisa.gov/news-events/alerts/2025/01/23/cisa-adds-one-known-exploited-vulnerability-catalog
The KEV page quotes (emphasis mine): "JQuery contains a *persistent* cross-site scripting (XSS) vulnerability" so this still doesn't seem to meet the bar for my XSS Reflections list:
https://github.com/v-p-b/xss-reflections
If anybody has more info about the related incident please lmk!
permalink
|
main