CVE-2021-4243: fix XSS vuln · claviska/jquery-minicolors@ef13482

Skip to content

• • Actions

    Automate any workflow

  • Packages

    Host and manage packages

  • Security

    Find and fix vulnerabilities

  • Codespaces

    Instant dev environments

  • Copilot

    Write better code with AI

  • Code review

    Manage code changes

  • Issues

    Plan and track work

  • Discussions

    Collaborate outside of code

*   Explore
*   All features
*   Documentation
*   GitHub Skills
*   Blog

• • For

  • Enterprise

  • Teams

  • Startups

  • Education

  • By Solution

  • CI/CD & Automation

  • DevOps

  • DevSecOps

  • Case Studies

  • Customer Stories

  • Resources

• • GitHub Sponsors

    Fund open source developers

*   The ReadME Project
    
    GitHub community articles
    

*   Repositories
*   Topics
*   Trending
*   Collections

• Pricing

• Notifications

• Fork 323

• Code

• Issues 22

• Pull requests 6

• Actions

• Security

• Insights

Permalink

Browse files

fix XSS vuln

• Loading branch information

1 parent 707b803 commit ef134824a7f4110ada53ea6c173111a4fa2f48f3

Showing 2 changed files with 3 additions and 2 deletions.

• jquery.minicolors.js
• jquery.minicolors.min.js

@@ -226,7 +226,8 @@

}

swatchString = swatch;

swatch = isRgb(swatch) ? parseRgb(swatch, true) : hex2rgb(parseHex(swatch, true));

$(‘<li class="minicolors-swatch minicolors-sprite"><span class="minicolors-swatch-color" title="’ + name + ‘"></span></li>’)

$(‘<li class="minicolors-swatch minicolors-sprite"><span class="minicolors-swatch-color"></span></li>’)

.attr("title", name)

.appendTo(swatches)

.data('swatch-color’, swatchString)

.find(‘.minicolors-swatch-color’)

0 comments on commit ef13482

Please sign in to comment.