imacat/lucia-frontend
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Fix XSS in uploadFailedSecond default case with escapeHtml

Browse Source 
Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
This commit is contained in:
依瑪貓
2026-03-09 14:10:16 +08:00
parent b58659295b
commit 2a2eeabac7
1 changed files with 1 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
src/module/alertModal.js
View File

@@ -402,7 +402,7 @@ export async function uploadFailedSecond(detail) {
key = "Status";
break;
default:
key = i.loc[2];
key = escapeHtml(String(i.loc[2]));
break;
}
content = `<li>Data missing in ${key} Column: (Row #${i.loc[1]})</li>`;