-
## What is missing or needs to be updated?
The current cheats do not recommend input sanitization:
https://cheatsheetseries.owasp.org/cheatsheets/Cross_Site_Scripting_Prevention_Cheat_Sheet.ht…
-
### Is there an existing issue for this?
- [X] I have searched the existing issues
### Feature Description
**Current popup.js has several critical security vulnerabilities in its email handling sys…
-
During this week's IWABG call, I brought up attacks against threshold-based prevention of microtargeting and was referred to https://github.com/WICG/turtledove/blob/main/OUTCOME_BASED.md. It may be th…
-
Mainly based on the article http://aurelieherbelot.net/pears/ I suspect PeARS to be quite prone to e.g. poisoning of search results made across the distributed network.
Also forgery (e.g. "let's prom…
-
Looking at #1571, I was wondering if the use of DocumentBuilderFactory.newDocumentBuilder (for example, in
https://github.com/hapifhir/org.hl7.fhir.core/blob/60470b1a28155df059d30ce7754aec568efe4b3…
-
```markdown
Overview
The easey-account-api has been identified as lacking sufficient input validation. This ticket focuses on implementing input
validation to ensure that all user inputs are corre…
-
https://docs.web3forms.com/getting-started/customizations/spam-protection/
--------------DONE----------------
Ajouter un HoneyPot
Ajouter un hcaptca de sécurité lors de l'envoi de formulaire + (r…
-
Vulnerable Library - htmlsanitizer.5.0.355.nupkg
Cleans HTML from constructs that can be used for cross site scripting (XSS)
Library home page: https://api.nuget.org/packages/htmlsanitizer.5.0.355.n…
-
This issue lists Renovate updates and detected dependencies. Read the [Dependency Dashboard](https://docs.renovatebot.com/key-concepts/dashboard/) docs to learn more.
## Config Migration Needed
- […
-
Vulnerable Library - fonttools-4.38.0-py3-none-any.whl
Tools to manipulate font files
Library home page: https://files.pythonhosted.org/packages/e3/d9/e9bae85e84737e76ebbcbea13607236da0c0699baed0ae4…