HenintsoaHARINORO
commented
3 years ago Yes I understand
Open Legion112 opened 3 years ago
HenintsoaHARINORO
commented
3 years ago Yes I understand
Legion112
commented
3 years ago @HenintsoaHARINORO again, I will close the issue when there is no XSS. I have explained to you the potential problem with the current code. You need to create a pull request what will fix this issue.
https://owasp.org/www-community/attacks/xss/ https://cheatsheetseries.owasp.org/cheatsheets/Cross_Site_Scripting_Prevention_Cheat_Sheet.html You should not trust user input. Try to put the following code in the input here.
And see what will happend https://github.com/HenintsoaHARINORO/ExoPHP/blob/593d3864206c2c3d05cebd17f521cd5cf0ad1b7e/multiplication.php#L53