Critical
Unsanitized input from the document location flows into appendChild, where it is used to dynamically construct the HTML page on client side. This may result in a DOM Based Cross-Site Scripting attack (DOMXSS).
CWE-79 Cross-site Scripting (XSS)
-
Josune Cordoba Torrecilla
-
Alberto Jesus Gutierrez Juanes
- Votes:
-
0 Vote for this issue
- Watchers:
-
2 Start watching this issue
- Created:
- Updated:
- Resolved: