diff --git "a/\346\221\207\345\245\226/\346\221\207\345\245\226\350\207\252\345\206\231/js/jquery-1.11.0.js" "b/\346\221\207\345\245\226/\346\221\207\345\245\226\350\207\252\345\206\231/js/jquery-1.11.0.js"
index 3c88fa8..f60b6b4 100644
--- "a/\346\221\207\345\245\226/\346\221\207\345\245\226\350\207\252\345\206\231/js/jquery-1.11.0.js"
+++ "b/\346\221\207\345\245\226/\346\221\207\345\245\226\350\207\252\345\206\231/js/jquery-1.11.0.js"
@@ -8802,6 +8802,11 @@ function ajaxConvert( s, response, jqXHR, isSuccess ) {
 			// Convert response if prev dataType is non-auto and differs from current
 			} else if ( prev !== "*" && prev !== current ) {
 
+				// Mitigate possible XSS vulnerability (gh-2432)
+				if ( s.crossDomain && current === "script" ) {
+					continue;
+				}
+
 				// Seek a direct converter
 				conv = converters[ prev + " " + current ] || converters[ "* " + current ];