secDevLabs icon indicating copy to clipboard operation
secDevLabs copied to clipboard
verified publisher icon globocom

Fix A3 SSType

Open LorennaCunha opened this issue 1 year ago • 0 comments

This solution refers to which of the apps?

A3 - SSType

What did you do to mitigate the vulnerability?

Replaced 'NAMEHERE' with '{{ name }}' in the template and used Tornado's secure rendering to handle user input safely.

Did you test your changes? What commands did you run?

I tested the changes by reproducing the attack narrative.

LorennaCunha avatar Nov 26 '24 17:11 LorennaCunha