Error from SNYK code:
✗ [High] Cross-site Scripting (XSS) Path: ignition-server/cmd/start.go, line 250 Info: Unsanitized input from an HTTP header flows into Write, where it is used to render an HTML page returned to the user. This may result in a Reflected Cross-Site Scripting attack (XSS).
- is cloned by
-
OCPBUGS-41982 [SNYK] Unsanitized input from a CLI argument flows into os.ReadFile and os.WriteFile
-
- Closed
-
-
OCPBUGS-41992 Perform a better sanitisation from the input into IgnitionServer from HTTP header
-
- Closed
-
- links to