You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
freq only checks if the string "alert(1)" is reflected in the result, which could lead to a lot of false positives, it would be great if the following block of code
freq only checks if the string "alert(1)" is reflected in the result, which could lead to a lot of false positives, it would be great if the following block of code
is changed to match
"><img src=x onerror=alert(1)>
or any other xss payload that contains < and > in order to avoid false positives.Thanks
The text was updated successfully, but these errors were encountered: