Description

Cross-site scripting (XSS) vulnerability in the DataTables plugin 1.10.8 and earlier for jQuery allows remote attackers to inject arbitrary web script or HTML via the scripts parameter to media/unit_testing/templates/6776.php.

Remediation

References

CVE-2015-6584

Related Vulnerabilities

WordPress Plugin Visual Email Designer for WooCommerce SQL Injection (1.7.1)

WordPress Plugin Two-Factor Authentication-Clockwork SMS Cross-Site Scripting (1.0.3)

Seo Panel Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-29010)

WordPress Plugin BulletProof Security Multiple Cross-Site Scripting Vulnerabilities (.48.9)

MySQL CVE-2021-2172 Vulnerability (CVE-2021-2172)

Severity

Medium

Classification

CVE-2015-6584

Tags

Missing Update Known Vulnerabilities