Apex Code Development You need to sign in to do that
Don't have an account?
Client DOM Code Injection
Facing issue in chexmarx-Client DOM Code Injection
The attacker can inject the malicious payload into the victim's browser, via external input flowStatus. This is
read by the browser in the window.addEventListener method,
My code in lwc
window.addEventListener("message", (event) => {
detail: {
flowStatus: event.data.flowStatus,
}
});
Kindly help to resolve this
The attacker can inject the malicious payload into the victim's browser, via external input flowStatus. This is
read by the browser in the window.addEventListener method,
My code in lwc
window.addEventListener("message", (event) => {
detail: {
flowStatus: event.data.flowStatus,
}
});
Kindly help to resolve this