Joomla 3 JQuery problem - outdated version?

[kweb]

Hi there,
I have a problem with my 3.10.10 website. I have an older website for a volkswagen car dealer. The owner of the car company got emailed by a security plattform volkswagen is working with, that there is a problem of Cross Site Scripting Vulnerability on his website.

I have checked my website with pentest tools website scanner and I am receiving following problems

I checked out and saw, that version 1.12.4 of jquery is the standard jquery version joomla is working with, located in /media/jui/js. But it seems that this can result in xss problems?! So what can I do now? I need to solve this problem otherwise we get blacklisted with the page in 3 months.

I hope someone can help,
kweb

[gws]

Admin tools pro has XSS protection,might be worth a look.

[SharkyKZ]

jQuery included in J3 has been modified to include security fixes from newer jQuery versions. So this shouldn't be a real problem. If you're still worried about some automatic tools detecting it as vulnerable, you can use a plugin to load a newer version. But be aware this could break something.

[kweb]

The problem is that we HAVE TO SOLVE IT otherwise we will get blacklisted. I also dont think that this is a real problem but thats not the point. Thanks for the tipps - I will try to figure out. Btw. would it be a solution to upgrade to J4?

[SharkyKZ]

Yes, that would solve your problem too.