Unsanitized User Input in Dynamic HTML Insertion (XSS)

This was found as a potential XSS issue. 

Description
Unsanitized user input in dynamic HTML insertion can lead to Cross-Site Scripting (XSS) attacks. This vulnerability arises when user-provided data is directly inserted into the DOM without proper sanitization, potentially allowing attackers to execute malicious scripts.


Remediations
Use an HTML sanitization library to clean user input before inserting it into the HTML. This step helps prevent XSS attacks by removing or neutralizing any potentially harmful scripts.

Reference : 
[OWASP XSS explained](https://owasp.org/www-community/attacks/xss/)
![image](https://github.com/user-attachments/assets/97ae615b-ccbf-48c5-b426-6ecb1f8a6d1a)


Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Uh oh!

Unsanitized User Input in Dynamic HTML Insertion (XSS) #252

Metadata

Assignees

Labels

Projects

Milestone

Relationships

Development

Uh oh!

Unsanitized User Input in Dynamic HTML Insertion (XSS) #252

Description

Metadata

Metadata

Assignees

Labels

Projects

Milestone

Relationships

Development

Issue actions