HeroDevs
Visit jQuery NES Home Page

jQuery 2.1.x Release Notes

2 versions

Comprehensive release notes and changelog for jQuery 2.1.x, including security patches, bug fixes, and feature updates across all supported versions.

Mar 23, 2026
Latest: 2.1.6
50 Patched Vulnerabilities
VEX Statements

March 2026

2.1.6

Released Mar 23, 2026
CVE-2020-11023
CVE-2020-11022
CVE-2019-11358
CVE-2015-9251
Full Version: 
2.1.4-jquery-2.1.6

Notes

  • Full Version: @neverendingsupport/jquery@2.1.4-jquery-2.1.6

Bug Fixes

  • Wrap <option> element to prevent executing untrusted code.
    • This fixes a medium-severity Cross-Site Scripting (XSS) vulnerability (CVE-2020-11023).
  • Remove instances where HTML (from untrusted sources) is passed into a manipulation method.
    • This fixes a medium-severity Cross-Site Scripting (XSS) vulnerability (CVE-2020-11022).
  • Prevent Object.prototype pollution.
    • This fixes a medium-severity Prototype Pollution vulnerability (CVE-2019-11358).
  • Prevent auto-execution of scripts when no explicit dataType is provided
    • This fixes a medium-severity Cross-Site Scripting (XSS) vulnerability (CVE-2015-9251).

2.1.5

Released Mar 23, 2026
Full Version: 
2.1.4-jquery-2.1.5

Notes

  • This release contains no functional change from the OSS jquery v2.1.4.
  • This release mainlines OSS v2.1.4 into NES v2.1.5.
  • Full Version: @neverendingsupport/jquery@2.1.4-jquery-2.1.5

Stay in the loop

~/herodevs-spring-framework-support

Open Source Support

When official support ends, we're just getting started.