A3 - Injection - SSType

Open juliajamile opened this issue 3 years ago • 0 comments

This solution refers to which of the apps?

What did you do to mitigate the vulnerability?

To resolve the vulnerability it is necessary to change the way a variable is declared in html. The variable has been surrounded by double curly braces so that its content is considered a string.

Did you test your changes? What commands did you run?

I tested the attacks given in the problem and could not reproduce the same errors.

Sep 22 '22 20:09 juliajamile