Cross-Site Scripting (XSS) #1
Description
The use of 'dangerouslySetInnerHTML' in React can lead to Cross-Site Scripting (XSS) vulnerabilities if the HTML content is not properly sanitized. In this case, the 'comment' variable is directly used without any sanitization, which could allow an attacker to inject malicious scripts.