ishangsf/rspec
2
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
rspec/rules/S4447/javascript/rule.adoc

12 lines
421 B
Plaintext
Raw Permalink Blame History

This file contains ambiguous Unicode characters

This file contains Unicode characters that might be confused with other characters. If you think that this is intentional, you can safely ignore this warning. Use the Escape button to reveal them.

== Why is this an issue?
"dangerouslySetInnerHTML" is Reacts replacement for using "innerHTML" in the browser DOM.
Even if its goal is to not expose your users to a cross-site scripting (XSS) attack, there is a great chance you wrongly use it and finally create an XSS vulnerability. Consider refactoring your code to not use "dangerouslySetInnerHTML".
== Resources
* \https://reactjs.org/docs/dom-elements.html
Reference in New Issue View Git Blame Copy Permalink