DataTables
Advanced interaction
features for your tables.
Editor
Comprehensive editing
library for DataTables.
Manual
Download
Show site navigation

Security Vulnerability - Scan report

Security Vulnerability - Scan report

AdityaRaj_PSAdityaRaj_PS Posts: 1Questions: 1Answers: 0
in Free community support

Hey Community,

Our development leveraged 1.10.16 version to build out the application, and after a security review done, by our clients, we have identified the following XSS issues(listed below).

We researched and identified that we have change the version above 1.16 to resolve

We are a little short on time, and before changing the version, we wanted to check with the group, after crossing 1.16 version, has anyone run a security scan on their code, and identified, and potential vulnerabilities?

Screenshot of XSS:

Answers

  • allanallan Posts: 64,278Questions: 1Answers: 10,611 Site admin

    I use Github's code scanning tools (CodeQL) to automatically check all commits to DataTables and its extensions.

    That was setup about this time last year, so all the latest versions are free from automatically detected issues.

    If you are short on time (aren't we all!) you might want to try DataTables 1.13.11, which is the latest of the v1 series (legacy, and no longer supported btw). Or even 1.10.25 which was the last of the 1.10.x series. List of all releases here.

    If you decide to upgrade to v2, make sure you read the upgrade guide.

    Allan

Sign In or Register to comment.

DataTables

DataTables designed and created by SpryMedia Ltd.
© 2007-2023 MIT licensed. Privacy policy. Supporters.
SpryMedia Ltd is registered in Scotland, company no. SC456502.