From 2128a6db16f12ee538c363e4c7745f8a99009382 Mon Sep 17 00:00:00 2001
From: Mobb autofixer <git@mobb.ai>
Date: Thu, 30 May 2024 14:34:08 +0000
Subject: [PATCH] mobb fix commit: d688b724-5def-4135-adec-4cc83b59f9e5

---
 src/main/resources/lessons/xxe/js/xxe.js | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/main/resources/lessons/xxe/js/xxe.js b/src/main/resources/lessons/xxe/js/xxe.js
index 9c8ded38e0..8ee881af30 100644
--- a/src/main/resources/lessons/xxe/js/xxe.js
+++ b/src/main/resources/lessons/xxe/js/xxe.js
@@ -75,7 +75,7 @@ function getComments(field) {
             var comment = html.replace('USER', result[i].user);
             comment = comment.replace('DATETIME', result[i].dateTime);
             comment = comment.replace('COMMENT', result[i].text);
-            $(field).append(comment);
+            $(field).append(DOMPurify.sanitize(comment));
         }
 
     });