XSS vulnerability (new in v1.2.0)

Version 1.2.0 introduces a major XSS vulnerability

Version 1.1.0: no problem - http://jsfiddle.net/hxao6bc5/
Version 1.2.0: problem - http://jsfiddle.net/ptsL5md0/

![screenshot 2014-11-07 11 47 40](https://cloud.githubusercontent.com/assets/97612/4959322/57db4b00-66b7-11e4-965d-4a5db535db49.png)

Not sure of which commit introduces it, but here's [the diff](https://github.com/harvesthq/chosen/compare/v1.1.0...v1.2.0)


Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

XSS vulnerability (new in v1.2.0) #2132

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

XSS vulnerability (new in v1.2.0) #2132

Description

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions