thesp0nge/gist:97167d043cc729a59beb8e0406e0ca15

Created July 7, 2023 13:31

Star 0 You must be signed in to star a gist
Fork 0 You must be signed in to fork a gist

Learn more about clone URLs
Clone this repository at <script src="https://gist.github.com/thesp0nge/97167d043cc729a59beb8e0406e0ca15.js"></script>
Save thesp0nge/97167d043cc729a59beb8e0406e0ca15 to your computer and use it in GitHub Desktop.

Download ZIP

spot_the_vuln_2

Raw

gistfile1.txt

	var searchQuery = window.location.hash.substr(1);
	document.write("Risultati per la ricerca: " + searchQuery);

fdicarlo commented Jul 14, 2023 •

edited

Modified code to address the vulnerability:

var searchQuery = window.location.hash.substr(1); var sanitizedQuery = encodeURIComponent(searchQuery); document.write("Risultati per la ricerca: " + sanitizedQuery);

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment