GraFa icon indicating copy to clipboard operation
GraFa copied to clipboard

Published 20 hours ago verified publisher icon joseignm

XSS vulnerability

Open aidhog opened this issue 2 years ago • 1 comments

Raw user content is included into the results page, leading to potential issues with XSS for keyword queries like:

1"><script>alert(150)</script>

A quick solution (not requiring code changes) is to use the following guide: http://www.servletsuite.com/servlets/xssflt.htm

aidhog avatar Jan 18 '22 15:01 aidhog