Skip to content

Latest commit

 

History

History
15 lines (9 loc) · 694 Bytes

B308.md

File metadata and controls

15 lines (9 loc) · 694 Bytes

Pattern: Use of Django's mark_safe()

Issue: -

Description

Use of Django's mark_safe() may expose cross-site scripting vulnerabilities and should be reviewed.

It is also important to be particularly careful when using is_safe() with custom template tags, the safe() template tag, mark_safe(), and when autoescape is turned off.

Further Reading