← back
CVE-2015-9251observed exploitation

CVE-2015-9251

50Vexday Risk Score

Prioritize patching. It exploitation observed by VulnCheck and has a public proof of concept.

ssvc Actepss 30%
from disclosure to weapon336 days
Published on NVDJan 18
1st PoC+336d
VulnCheck+1099d
exploitation probability
30%top 2% of all CVEs
observed exploitation
yesVulnCheck
4 public exploit(s)
jQuery before 3.0.0 is vulnerable to Cross-site Scripting (XSS) attacks when a cross-domain Ajax request is performed without the dataType option, causing text/javascript responses to be executed.
Affected products
n/a · n/a
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.