express-expose icon indicating copy to clipboard operation
express-expose copied to clipboard
verified publisher icon expressjs

XSS vulnerable

Open stuartpb opened this issue 10 years ago • 1 comments

This module creates content for an inline <script> tag. However, if anything in the content of that script tag includes </script>, HTML5's parsing rules will prematurely end the tag there, allowing for XSS injection.

This module should modify any strings in the returned JSON (for keys or values) that include </script> to be written as </"+"script>.

stuartpb avatar Apr 15 '15 23:04 stuartpb

I can't confirm whether this allows for an XSS injection vulnerability, but I do believe #34 fixes your concern.

freewil avatar Apr 15 '15 23:04 freewil