Cross-site Scripting (XSS)

shave is vulnerable to Cross-Site Scripting. The element is not properly sanitized, allowing a remote attacker attacker to pass a malicious input to execute arbitrary Javascript code on the victim's browser...