search

aspnet / jquery-validation-unobtrusive

Add-on to jQuery Validation to enable unobtrusive validation options in data-* attributes.
MIT License
257 stars 113 forks source link

Fix for potential XSS #169

Closed threatpointer closed 2 months ago

threatpointer commented 3 months ago

The code contains a potential security issue related to Cross-Site Scripting (XSS). Specifically, the html method in jQuery is used to set the content of a list item <li />without any sanitization of the this.message content, which can lead to XSS if this.messagecontains malicious script.

The code directly inserts this.message into the HTML using html(). If this.message contains any user-generated input, an attacker could inject malicious scripts.

$("<li />").html(this.message).appendTo(list);

If an attacker manages to inject a payload like into this.message, the script would be executed in the context of the user's browser, leading to an XSS attack.

Solution Using text() instead of html() Using the text() method instead of html() ensures that the content is treated as plain text, thus preventing any HTML from being rendered.

$("<li />").text(this.message).appendTo(list);

https://github.com/aspnet/jquery-validation-unobtrusive/issues/168#issue-2424889941

threatpointer commented 3 months ago

@dotnet-policy-service agree company="Microsoft"