-
it is common for xss filters to include a filter for filtering javascript string, so we better include this in manual filter, thought?
-
**Steps to reproduce the behavior**
url:http://localhost/phpb2b/ajax.php?action=alert(/xss/)
**The page automatically loads and triggers XSS**
![image](https://user-images.githubusercontent.com/7…
-
I would like to request a new feature for the CSP: the possibility to block or restrict `javascript:` URLs, without blocking other scripts.
- Legitimate use of `javascript:` URLs is relatively rare…
Sjord updated
1 month ago
-
I tried to assign a topic of "Future Work" to some of our tickets. If I click that topic in the left menu to filter, the screen shows an empty list.
By default clicking the topic label points to a…
-
CVE ID:
CVE-2023-42399
PRODUCT:
JoditEditor < v.4.0.0-beta.86
DETAILS:
Jodit Editor v.4.0.0 beta.86 has an XSS vulnerability where the rich text editor does not completely filter out malicio…
-
Report View - Click on the cell.
Not able to link the numeric value to some other page. If we have to do that then the field has to be converted to text and if we convert it into text then sorting n…
-
```
I am using the Javascript API and get this error when I run my application that
modifies a contact record:
"Internet Explorer has modified this page to prevent cross-site scripting"
I was able …
-
```
I am using the Javascript API and get this error when I run my application that
modifies a contact record:
"Internet Explorer has modified this page to prevent cross-site scripting"
I was able …
-
There is no XSS filter for this project, and there is global storage XSS. Including but not limited to the following routes:
/goods/save
/supllier/save
/client/save
![image](https://user-images.gi…
-
When I use this code from [your examples](https://jsxss.com/en/examples/no_tag.html), I get the error "Type 'never[]' has no properties in common with type 'IWhiteList'.ts(2559)". It seems that the ty…