GMS-2016-46: XSS in dialog closeText

July 21, 2016

jQuery-UI has a cross site scripting (XSS) vulnerability in the closeText parameter of the dialog function. If your application passes user input to this parameter, it may be vulnerable to XSS via this attack vector.

References

github.com/jquery/jquery-ui/pull/1622

Code Behaviors & Features

Detect and mitigate GMS-2016-46 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →