Hello Support Team,
We recently conducted a VAPT (Vulnerability Assessment and Penetration Testing) on our WordPress website and one of the findings points to the “jQuery Validation for Gravity Forms” plugin.
According to the report, the plugin is loading jQuery Validation Library version 1.19.3, which has been flagged as containing known security vulnerabilities, including potential Cross-Site Scripting (XSS) and Denial of Service (DoS) risks.
Plugin Details:
Plugin: jQuery Validation for Gravity Forms
Version in use: 1.9.3
Reported library: jquery-validation 1.19.3
Could you please confirm:
Whether the plugin currently bundles jquery-validation v1.19.3.
If a newer and patched version of the library is available.
Whether an update is planned to address these security concerns.
If there is any recommended workaround or patch that can be applied immediately.
The VAPT team has recommended updating the underlying library to the latest secure version. We would appreciate your guidance on how to address this finding.
.
