You need to sign in to do that
Don't have an account?
ekarthik
app publish - XSS Apex Force com Critical Security Risk
Hi
I am facing problem when publish apps xss(cross side cripting) error. Apex Force com Critical Security Risk
Query Name - Stored_XSS
mytask = [select id, Name, Project__r.Project_Color__c, OwnerID ,CreatedByID,Owner.Name,CreatedBy.Name from
Project_Task__c where List__c = 'x'];
How to solve this problem
sfdcfox
Stored XSS means that you're querying data from the database, and then exposing this data in an unescaped element on your page. There's nothing strictly wrong with this query, but I would suspect that either Name or Project__r.Project_Color__r is being leaked without escaping. We need to see the entire security risk chain, not just the query.