Critical jQuery Vulnerability Added to CISA's Known Exploited List Despite 4-Year-Old Patch

CISA has added a medium-severity jQuery vulnerability to its Known Exploited Vulnerabilities catalog due to active exploitation in the wild. The vulnerability, patched in 2020, allows attackers to execute malicious code through cross-site scripting despite existing HTML sanitization.