Cross site scripting (DOM based message)
The application may be vulnerable to DOM-based cross-site scripting. Data is read from location and passed to jQuery() via the following statement:
How is this vulnerable?
Would it be possible to send the request, response, and full issue detail to us via email? (firstname.lastname@example.org)