Skip to content

Commit

Permalink
Merge pull request OWASP#97 from s111s/patch-1
Browse files Browse the repository at this point in the history 
Fix: Change ancor to anchor on line 349
  • Loading branch information
@righettod
righettod authored May 5, 2019
2 parents e791059 + d51304b commit 2db6d6b
Showing 1 changed file with 1 addition and 1 deletion.
2 changes: 1 addition & 1 deletion cheatsheets/Cross_Site_Scripting_Prevention_Cheat_Sheet.md
View file
Original file line number Diff line number Diff line change
Expand Up @@ -346,7 +346,7 @@ The `SanitizeHelper` module provides a set of methods for scrubbing text of unde
## RULE \#7 - Avoid JavaScript URL's
Untrusted URL's that include the protocol javascript: will execute javascript code when used in URL DOM locations such as ancor tag HREF attributes or iFrame src locations. Be sure to validate all untrusted URL's to ensure they only contain safe schemes such as HTTPS.
Untrusted URL's that include the protocol javascript: will execute javascript code when used in URL DOM locations such as anchor tag HREF attributes or iFrame src locations. Be sure to validate all untrusted URL's to ensure they only contain safe schemes such as HTTPS.
## RULE \#8 - Prevent DOM-based XSS
Expand Down

0 comments on commit 2db6d6b

Please sign in to comment.