Article - CS328065
jQuery 1.12.4 included in ThingWorx Platform 8.3 and lower has known Secuirty Vulnerabilities
Modified: 24-Jul-2020
Applies To
- ThingWorx Platform 8.1 to 8.4
Description
- jQuery 1.12.4 has security vulnerabilities and should be removed from ThingWorx Platform
- Desire to remove jQuery 1.12.4 from ThingWorx Platform
- Penetration testing revealed jQuery 1.12.4 which is included with ThingWorx is vulnerable to Cross-site Scripting (XSS)
- Security scan shows CVE with jquery-1.12.4.min.js
This is a printer-friendly version of Article 328065 and may be out of date. For the latest version click CS328065