You need to sign in to do that
Don't have an account?
Ankur Saini 9
Query: Stored XSS : Code Review
<apex:repeat value="{!ObjLoadingSetting.listofMapping}" var="mapping" id="mrep"> <tr> <td><apex:selectList value="{!mapping.selectSobjectfield}" styleClass="selectedValue" size="1" disabled="{!ObjLoadingSetting.editmod}" onchange="SelectedValueSOQL('{!ObjLoadingSetting.UpsertLoadingSetting.Sobject_Name__c}','Multipal','')" style="height:30px; width:250px;" ><apex:selectOptions value="{!mapping.SobjectFieldList}"/></apex:selectList></td> <td><apex:selectList value="{!mapping.selectReportfield}" size="1" disabled="{!ObjLoadingSetting.editmod}" onchange="checkm(this.id)" styleClass="parentclassm" multiselect="false" id="acc3" style="height:30px; width:130px;" ><apex:selectOptions value="{!mapping.ReportfieldList}"/></apex:selectList></td> <td><apex:inputText value="{!mapping.selectMappingfield}" disabled="{!OR(mapping.editenable,ObjLoadingSetting.editmod)}" style="height:30px; width:300px; padding-left:5px;"/></td> <td><a href="#!" class="button2" onclick="deleteROWM('{!i}','{!ObjLoadingSetting.UpsertLoadingSetting.Sobject_Name__c}','Multipal','')" style="margin-left:15px;" >Delete</a></td> </tr> <apex:variable var="i" value="{!i+1}"/> </apex:repeat>
https://qas-shared-assets.s3.amazonaws.com/snaps/fejjo3f8qjpds4i
In the Above Link I have highlighted the Lines, from where you are getting XSS Isues.
Go to the below links, They will help you understanding about XSS and XSS security.
https://developer.salesforce.com/page/Secure_Coding_Cross_Site_Scripting
https://developer.salesforce.com/docs/atlas.en-us.pages.meta/pages/pages_security_tips_xss.html
Hope it Helps :)
Please like answer if its is helpful. Mark this question solved if it resolves your issue, by selecting it best answer.
Regards
Abhilash Mishra