Veracode cross-site scripting (XSS) security flaw report for AwesomeMvc.js v4.0

Shailesh Lahoti

asked at 18 Sep 2018

you can download the latest and try it; is this the original AwesomeMvc.js ? the one we provide for download has all the code in one line can you demonstrate the flaw (perhaps in a mini demo) and confirm it ?

at 18 Sep 2018 Omu
My question is have you ran the Veracode static scan on AwesomeMvc.js? either version.

at 18 Sep 2018 Shailesh Lahoti
no, we are not using the technology you mentioned; we are not using user input to generate the html for our helpers, so think the problems you mention are false

at 18 Sep 2018 Omu

Answers