-
Cross-site scripting
-
Time | IP / Action
-- | --
October 16, 20194:24pm | 76.8.255.114 (United States) Blocked for XSS: Cross Site Scripting in query string: cl=">alert(String.fromCharCode(88,83,83))
October …
-
The current default HTML5 template might expose developers and end users to [CSRF attacks] (Cross-site request forgery) due to lack of the `SameSite` attribute for cross-site cookies settings.
…
-
### Is your feature request related to a problem? Please describe.
Making users aware that a healthy ecosystem has a balanced share of staked ETH is worth highlighting to users so they can make an in…
-
## Problem
On the Edit page of any document, on submit, content sanitization is done like this:
https://github.com/ryanlelek/Raneto/blob/2d7e1a21b592a6df03c7d71f217f6fba216f3f58/app/routes/page.…
-
- Site: [https://laughing-train-4p474qj7p94hgjx-3000.app.github.dev](https://laughing-train-4p474qj7p94hgjx-3000.app.github.dev)
**New Alerts**
- **Content Security Policy (CSP) Header Not Set**…
-
### pycaret version checks
- [X] I have checked that this issue has not already been reported [here](https://github.com/pycaret/pycaret/issues).
- [X] I have confirmed this bug exists on the [latest…
-
-
### Preliminary checklist
- [X] I have read the [README](https://github.com/uazo/cromite/blob/master/README.md)
- [X] I have read the [FAQs](https://github.com/uazo/cromite/blob/master/FAQ.md).
- [X]…
-
if you have a page that you don't control which embeds your site in an iframe
and your site embeds another site in an iframe
so you have
* https:/one-domain
* which embeds https://two-doma…