Is this the latest version of this jQuery Cycle Lite plug-in?

See where it is being detected → Script loaded: http://aidmi.org/js/image_fadeinout/jquery.cycle.lite.1.0.min.js
No sources and sinks: http://www.domxssscanner.com/scan?url=http%3A%2F%2Faidmi.org%2Fjs%2Fimage_fadeinout%2Fjquery.cycle.lite.1.0.min.js
http://malsup.com/jquery/cycle/lite/
The code that is there has: jQuery Cycle Lite Plugin * -http://malsup.com/jquery/cycle/lite/ * Copyright (c) 2008 M. Alsup * Version: 1.0 (06/08/2008) * Dual licensed under the MIT and GPL licenses: * -http://www.opensource.org/licenses/mit-license.php * -http://www.gnu.org/licenses/gpl.html * Requires: jQuery v1.2.3 or later
while the “later” has

polonus (volunteer website security analyst and website error-hunter)

Of course it will depend on the circumstances, whether a script really will kick up vulnerabilities or will be exploitable.
It just is depending on where the script has access. When it answers to the rule of same origin there is less danger.
A SRI will also show much on how vulnerable a script may be under certain circumstances. *
In our example we don’t see any sinks and sources initially.

  • Here there is less of a threat: Scripts OK
    Tag Result
Same origin Same origin Same origin Same origin Same origin

Stylesheets OK
Tag Result

Same origin Same origin

polonus