Open esp0xdeadbeef opened 3 years ago
There is an simple XSS inside my repo, if you click on the following link, javascript will be executed.
https://htmlpreview.github.io/?https://github.com/esp0xdeadbeef/htmlpreviewxss/blob/main/README.md
@niutech https://lgtm.com/projects/g/htmlpreview/htmlpreview.github.com?mode=list
You can add the CodeQL Action which is the successor of LGTM (both are owned by GitHub).
There is an simple XSS inside my repo, if you click on the following link, javascript will be executed.
https://htmlpreview.github.io/?https://github.com/esp0xdeadbeef/htmlpreviewxss/blob/main/README.md