Skip to content

[Issue] Update jquery.metadata.js DOM text reinterpreted as HTML #38852

New issue
New issue
Closed
#38836
Closed
[Issue] Update jquery.metadata.js DOM text reinterpreted as HTML#38852
#38836
Assignees
engcom-Hotel
Labels
Issue: On HoldTriage: Dev.ExperienceIssue related to Developer Experience and needs help with Triage to Confirm or Reject it
@m2-assistant

Description

@m2-assistant
m2-assistant
opened on Jun 20, 2024

This issue is automatically created based on existing pull request: #38836: Update jquery.metadata.js DOM text reinterpreted as HTML

Description (*)

By using innerText, it will avoid the risk of HTML injection, as these properties automatically escape any HTML special characters in the provided text. This helps prevent cross-site scripting (XSS) vulnerabilities by treating the input as plain text rather than interpreted HTML.

Contribution checklist (*)

  • Pull request has a meaningful description of its purpose
  • All commits are accompanied by meaningful commit messages
  • All new or changed code is covered with unit/integration tests (if applicable)
  • README.md files for modified modules are updated and included in the pull request if any README.md predefined sections require an update
  • All automated tests passed successfully (all builds are green)

Metadata

Metadata

Assignees

Labels

Issue: On HoldTriage: Dev.ExperienceIssue related to Developer Experience and needs help with Triage to Confirm or Reject it

Type

No type

Projects

No projects

Milestone

No milestone

Relationships

None yet

Development

No branches or pull requests

Issue actions