Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Create White List cross site scripting level #3

Closed
markdenihan opened this issue Apr 29, 2014 · 3 comments
Closed

Create White List cross site scripting level #3

markdenihan opened this issue Apr 29, 2014 · 3 comments
Assignees
@markdenihan
Labels
Levels WebApp
Milestone
Security Shepherd...

Comments

@markdenihan
Copy link
Member

No description provided.

@markdenihan markdenihan added this to the OWASP Dublin Workshop milestone Apr 29, 2014
@markdenihan markdenihan self-assigned this Apr 29, 2014
@markdenihan markdenihan reopened this Apr 29, 2014
@markdenihan
Copy link
Member Author

Level will be Whitelisted URL types. Once they start with "http" and are valid URLs they will be accepted. So a sting like http://google.com/search?q="/><script>alert(1)</script><!-- Would work

@markdenihan
Copy link
Member Author

lol. GitHub Scrubbed the script tags.

@markdenihan
Copy link
Member Author

Complete

markdenihan pushed a commit that referenced this issue Mar 16, 2022
@dependabot @markdenihan
Bump log4j-core from 2.17.1 to 2.17.2 (#3)
812e7e9 
Bumps log4j-core from 2.17.1 to 2.17.2.

---
updated-dependencies:
- dependency-name: org.apache.logging.log4j:log4j-core
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
ismisepaul added a commit that referenced this issue May 16, 2022
@ismisepaul
Merge pull request #3 from ismisepaul/dependabot/maven/de.mkammerer-a…
b047492 
…rgon2-jvm-2.11

Bump argon2-jvm from 2.2 to 2.11
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@markdenihan markdenihan

Labels
Levels WebApp
Projects
None yet
Milestone
Security Shepherd V2.0 Release
Development

No branches or pull requests
1 participant
@markdenihan