SecureBitChat/securebit-chat
1
0
Fork 0
Code Issues Pull Requests Actions 1 Packages Projects Releases Wiki Activity
Files
333c4b87b5cbbc671089d8ad4adfa37fcbe7262c
securebit-chat/dist/qr-local.js
lockbitchat 333c4b87b5 fix: improve sanitization to prevent XSS 
- Now the sanitization function protects against:
  - Nested script tags: <scrip<script>alert("XSS")</script>t>
  - HTML comments containing scripts: <!-- <script>alert("XSS")</script> -->
  - Multiple overlapping tags: <script><script>alert("XSS")</script></script>
  - Attributes in closing tags: </script foo="bar">
  - Complex nested structures combining different tags
  - All known XSS vectors
2025-10-19 23:55:41 -04:00

1.2 MiB
Raw Blame History

View Raw
Reference in New Issue View Git Blame Copy Permalink