Cross-site scripting (DOM-based) burp issues
In Burp Scanner Report, I got below issue
The application may be vulnerable to DOM-based cross-site scripting. Data is read from location and passed to $() via the following statement:
$(location).attr('href',"/MYAPP/home.action");
How this can be avoided. Will below solution to prepend '/' work in this case or it will be still exploitable
$(location).attr('href','/'+"MYAPP/home.action");
-
10:50
-
10:40
Use PyTorch to adjust Tensor matrix values based on numbers I calculate from the Tensors?
-
10:30
How can I skip a file when using os.listdir that has nothing written in it
-
10:20
What happened to pip in Windows, why is it no longer problematic to install packages? [on hold]
-
10:10
-
10:00
Error creating bean with name 'getSessionFactory' defined in com.shivam.spring.config.AppConfig:
-
9:40
Getting error while executing java programs of packages from command line
-
9:30
Connection Pooling is not working for DB2 database through UCP
-
9:10
- Adding methods to es6 child class 16954 visits
- search for elements in a list 13465 visits
- In Chrome 55, prevent showing Download button for HTML 5 video 10247 visits
- typescript: tsc is not recognized as an internal or external command, operable program or batch file 8672 visits
- RxJS5 - error - TypeError: You provided an invalid object where a stream was expected 7647 visits
- Conflict: Multiple assets emit to the same filename 6520 visits
- Ionic 2 - how to make ion-button with icon and text on two lines? 6195 visits
