chadtomkiss-tbp

XSS in Twig templates

1

When using HAML and Twig to render our templates, we have run into an issue that allows XSS. ``` - set name = '">alert(1);' %input(value=name) ``` The compiled template is:...