+ Start a Discussion
sales force 4sales force 4 

The CheckMarx security scanner says that this lines is a Stored XSS vulnerability

14.public void LoadData() 

16. plan = [Select id, name,Icon__c,Bar_color__c from Activitytype__c limit 20];

41. <div Style="background-color:#!row.Bar_color__c};padding-bottom:3px;padding-top:3px;padding-left:20px;padding-right:20px; height:24px;width:200px;display:inline;">


7. public List<Activitytype__c> plan get;set;} 


41. <div Style="background-color:#!row.Bar_color__c};padding-bottom:3px;padding-top:3px;padding-left:20px;padding-right:20px; height:24px;width:200px;display:inline;"> 


65. <type>Text</type> 


41. <div Style="background-color:#!row.Bar_color__c};padding-bottom:3px;padding-top:3px;padding-left:20px;padding-right:20px; height:24px;width:200px;display:inline;"> 
logontokartiklogontokartik
You can use apex: tags to prevent this. Please read the below article

https://help.salesforce.com/HTViewHelpDoc?id=review_and_certification.htm&language=en_US (https://help.salesforce.com/HTViewHelpDoc?id=review_and_certification.htm&language=en_US)