jquery-file-upload (npm) — known CVEs & security advisories
Known CVE vulnerabilities and GitHub Security Advisories affecting the npm package jquery-file-upload, with affected version ranges, CVSS severity, EPSS exploit prediction, and CISA KEV status.
CVE-2021-37504 — CVSS 6.1 (medium): A cross-site scripting (XSS) vulnerability in the fileNameStr parameter of jQuery-Upload-File v4.0.11 allows attackers to execute arbitrary…