MessageService XSS vulnerability

Forum rules
Please note that response time for technical support is within 3-5 business days.
Post Reply
ncetincift
Posts: 10
Joined: 02 Jan 2018, 09:32

30 Oct 2019, 13:43

I'm viewing messages from the server with MessageService. If this message contains html tags, MessageService displays it as html. This causes the XSS vulnerability. Therefore, messages displayed with MessageService must be plain text.

merve7
Posts: 861
Joined: 12 Sep 2017, 10:44

16 Dec 2019, 10:56

Hi,
Thank you for your feedback. We will talk about this with our team and will offer you a solution.

Post Reply

Return to “Verona - PrimeNG”

  • Information
  • Who is online

    Users browsing this forum: No registered users and 2 guests