# CVE-2011

<table><thead><tr><th width="173">CVE</th><th width="323.7999267578125">CVE Description</th><th>Reference</th></tr></thead><tbody><tr><td>CVE-2011-4969</td><td>Cross-site scripting (XSS) vulnerability in jQuery before 1.6.3, when using location.hash to select elements, allows remote attackers to inject arbitrary web script or HTML via a crafted tag.</td><td><a href="https://nvd.nist.gov/vuln/detail/cve-2011-4969">https://nvd.nist.gov/vuln/detail/cve-2011-4969</a></td></tr></tbody></table>