[High Risk] Cross-site Scripting (XSS)

rokrebs / CIS4595

Capstone Project

0 stars 0 forks source link

[High Risk] Cross-site Scripting (XSS) #1

Closed jvs7 closed 1 year ago

jvs7 commented 1 year ago

[High Risk] Unsanitized input from the HTTP request body flows into send, where it is used to render an HTML page returned to the user. This may result in a Cross-Site Scripting attack (XSS).

Location: controllers/LoginController.js Line 16

rokrebs commented 1 year ago

request is validated and sanizated now ;)