MessageService XSS vulnerability
-
- Posts: 10
- Joined: 02 Jan 2018, 09:32
I'm viewing messages from the server with MessageService. If this message contains html tags, MessageService displays it as html. This causes the XSS vulnerability. Therefore, messages displayed with MessageService must be plain text.
-
- Information
-
Who is online
Users browsing this forum: No registered users and 19 guests