https://github.com/scaron/prettyphoto/issues/149 #TechPostAlert PrettyPhoto Jquery Plugin is vulnerable to DoMXSS since 07/2014, if any of your project is using it please remove immediately. Its actively being exploited in the wild. I have raised a public github issue to raise awareness but i do not expect a response as author seems to be AWOL and no update on github page since 2013. https://github.com/scaron/prettyphoto/issues/149 Please share to spread awareness. Updated 5 May 2015, 16:16