CX Client_DOM_XSS @ webgoat-container/src/main/resources/static/plugins/bootstrap-wysihtml5/js/wysihtml5-0.3.0.js [master]

**Client_DOM_XSS** issue exists @ **webgoat-container/src/main/resources/static/plugins/bootstrap-wysihtml5/js/wysihtml5-0.3.0.js** in branch **master**

Severity: High
CWE:79
[Vulnerability details and guidance](https://cwe.mitre.org/data/definitions/79.html)
[Internal Guidance](https://custodela.atlassian.net/wiki/spaces/AS/pages/79462432/Remediation+Guidance)
Lines: [5794](https://github.com/Custodela/WebGoat//blob/master/webgoat-container/src/main/resources/static/plugins/bootstrap-wysihtml5/js/wysihtml5-0.3.0.js#L5794) 

---
[Code (Line #5794):](https://github.com/Custodela/WebGoat//blob/master/webgoat-container/src/main/resources/static/plugins/bootstrap-wysihtml5/js/wysihtml5-0.3.0.js#L5794)
```
      url         = elementsWithTilde[i].href || elementsWithTilde[i].src;
```
---


Provide feedback

Saved searches

Use saved searches to filter your results more quickly

CX Client_DOM_XSS @ webgoat-container/src/main/resources/static/plugins/bootstrap-wysihtml5/js/wysihtml5-0.3.0.js [master] #33

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

CX Client_DOM_XSS @ webgoat-container/src/main/resources/static/plugins/bootstrap-wysihtml5/js/wysihtml5-0.3.0.js [master] #33

Description

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions