Xss Handlebars Safestring
This application is using a vulnerable method `Handlebars.SafeString(...)`. Handlebars SafeString method does not escape the data passed through it. Untrusted user input passing through SafeString method can make the application vulnerable to Cross-Site Scripting (XSS) attacks. XSS attacks are a type of security breach that occurs when an attacker manages to
greprules fetch gitlab-sast-rules-lgpl-javascript-xss-rule-handlebars-safestring --engine opengrepDescription
This application is using a vulnerable method `Handlebars.SafeString(...)`. Handlebars SafeString method does not escape the data passed through it. Untrusted user input passing through SafeString method can make the application vulnerable to Cross-Site Scripting (XSS) attacks. XSS attacks are a type of security breach that occurs when an attacker manages to
Detection target
Not provided
Recommended fix
Not provided
False-positive notes
Not provided
Community feedback
Sign in to report false positives, mark this rule useful, or suggest metadata improvements.