Cross-site Scripting (XSS)

github.com/answerdev/answer is vulnerable to Cross-site Scripting XSS. The vulnerability exists in the Markdown2HTML function at markdown.go due to a lack of input sanitization, which allows an attacker to inject and execute arbitrary HTML or javascript...