JobCatcher icon indicating copy to clipboard operation
JobCatcher copied to clipboard

Published 20 hours ago verified publisher icon yoannsculo

[Offers] XSS vulnerability

Open yscialom opened this issue 11 years ago • 0 comments

Since parts of text download from job boards are displayed as is by jobcatcher, an XSS vulnerability lies. We should:

  • [ ] filter out invalid characters ;
  • [ ] escape html characters.

yscialom avatar Nov 29 '13 17:11 yscialom