Join GitHub today
GitHub is home to over 40 million developers working together to host and review code, manage projects, and build software together.Sign up
Sanitization not applied recursively #29
Sanitization is not applied recursively, leading to a vulnerability to certain masking attacks. Example:
Mitigation: Run sanitization recursively until the input html matches the output html.