Reporter Rafay Baloch
Your own classified software is a script that helps you creates your own
*Discovered by: Rafay Baloch*
Vulnerability: Non persistent XSS
The script fails to sanitize the input that is entered into the text box
resulting into a XSS.
- All input generated at any point inside the application should be html
encoded and filtered/sanitized before it's
copied to the application response.
- All html special characters should be replaced with it's corresponding