At least 3 jQuery libraries are vulnerable: http://retire.insecurity.today/#!/scan/e2a3848c5f7423e938f4294af67c7a7fc694e230788877ea8da263e8fd7f53a2 Security could certainly be improved according to: https://observatory.mozilla.org/analyze.html?host=www.criminaljustice.ny.gov This seems OK: https://sritest.io/#report/0e55f144-2f12-42c6-b658-6699a3898baa C-grade status for server test here: https://www.htbridge.com/websec/r/www-criminaljustice-ny-gov-united-states/406d7f53f5a27e1b6f3b744e606f4968606d5dc8f7bb4929e68ad6f2f2673566 Do not really see it as being malcious as such, but wait for a final verdict for an Avast Team Member to react,
polonus
