Cross-site Scripting (XSS)
slim is vulnerable to cross-site scripting XSS attacks. The attacks are possible because it does not sanitize the splat attribute names of a tag e.g., params. It allows a malicious user to trigger the XSS attack when the user gets control over the attributes of a tag...