Denial of Service (DoS)
Affecting jquery package, versions =3.0.0-rc.1
Affected versions of the package are vulnerable to Denial of Service (DoS) due to removing a logic that lowercased attribute names. Any attribute getter using a mixed-cased name for boolean attributes goes into an infinite recursion, exceeding the stack call limit.
jquery to version 3.0.0 or higher.