Kayran has detected multiple cross-site scripting (XSS) vulnerabilities in actionscript/Jplayer.as in the Flash SWF component in the version of the jPlayer you use.
This allow remote attackers to inject arbitrary web scripts or HTML by using the “jQuery” or “id” parameters.
CVSS Version 2.0 – 4.3 Medium
Update the version of your jPlayer.
Make sure its version is 2.2.20 or higher.