1. Eric Larson
  2. MongoUI
  3. Issues
Issue #1 new

HTML in query results is not escaped

Christian Wyglendowski
created an issue

If there is any HTML in query results, it should be escaped for ease of reading and for preventing cross-site trickery.

Comments (0)

  1. Log in to comment