ishangsf/rspec
2
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
rspec/rules/S4447/javascript/rule.adoc
Arseniy Zaostrovnykh 5d0cb68cd0
RULEAPI-617: Add Jira closed RSPECs in Github repository
2021-06-08 14:23:48 +02:00

10 lines
389 B
Plaintext
Raw Blame History

This file contains ambiguous Unicode characters

This file contains Unicode characters that might be confused with other characters. If you think that this is intentional, you can safely ignore this warning. Use the Escape button to reveal them.

"dangerouslySetInnerHTML" is Reacts replacement for using "innerHTML" in the browser DOM.
Even if its goal is to not expose your users to a cross-site scripting (XSS) attack, there is a great chance you wrongly use it and finally create an XSS vulnerability. Consider refactoring your code to not use "dangerouslySetInnerHTML".
== See
* \https://reactjs.org/docs/dom-elements.html
Reference in New Issue View Git Blame Copy Permalink