YYHYlh
YYHYlh
As defined in [HTTP Semantics (RFC 9110)](https://httpwg.org/specs/rfc9110.html#field.content-encoding) and [HTTP/1.1 (RFC 2616)](https://www.w3.org/Protocols/HTTP/1.1/rfc2616.pdf), when the value of Content-Encoding in the response header is deflate, the response content should be in zlib format,...
This label and attack vector will cause dom-based XSS. if you type ``,the xss vulnerability will be triggered. 
### Preflight Checklist - [X] I agree to follow the [Code of Conduct](https://github.com/HXSecurity/DongTai/blob/main/.github/CODE_OF_CONDUCT.md) that this project adheres to. - [X] I have searched the [issue tracker](https://www.github.com/HXSecurity/DongTai/issues) for an issue that...