Attackers can exploit the vulnerability to carry out several malicious activities, including defacement, exfiltration, and malware infection. The flaw was reported by the Akamai researcher Larry Cashdollar, he explained that many other packages that include the vulnerable code may be affected.

https://securityaffairs.co/wordpress/77245/hacking/jquery-file-upload-plugin-0day.html