Sanitize JSONP namespace (XSS) #40

Open
wants to merge 3 commits into
from

Conversation

Projects
None yet
1 participant

Jsonp is being processed without sanitize the callback value from the user.

To prevent XSS this fix will not run JSONPWRAP if the callback value have any special char's

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment