Open get-famed[bot] opened 1 year ago
π€ Assignees for issue Detected directly writing to a Response object from user-defined input. This bypasses any HTML escaping and may expose your application to a Cross-Site-scripting (XSS) vulnerability. Instead, use 'resp.render()' to render safely escaped HTML. #22 are now eligible to Get Famed.
β Add assignees to track contribution times of the issue π¦ΈββοΈπ¦ΉοΈ β Add a single severity (CVSS) label to compute the score π·οΈοΈ
Happy hacking! π¦Ύπβ€οΈοΈ
π¦ΈββοΈ Famed Scanner
π Description
Detected directly writing to a Response object from user-defined input. This bypasses any HTML escaping and may expose your application to a Cross-Site-scripting (XSS) vulnerability. Instead, use 'resp.render()' to render safely escaped HTML.
π Related files
inject.js
This issue was created by famed π€