This repository demonstrates an instance of a XSS Vulnerability
-
Run through the setup flow in the security tab to enable code scanning. Commit directly to master.
-
Go to actions, and confirm that the analysis has run successfully.
-
Edit App.js and replace this code snippet:
let formText = "Predefined Text"with:
let search = window.location.search;
let params = new URLSearchParams(search);
let formText = params.get('text');- Create a PR. Wait for validation.