Put request URL through AntiSamy

Description

Entering a URL such as /<script>cross_site_scripting.nasl</script>.html can result in a XSS vulnerability when reporting back the URL in things like open graph metadata. Ensure that the URL itself is passed through the AntiSamy filter.

Assignee

Unassigned

Reporter

Dominic Watson

Labels

None

Accepted

Yes

Fix versions

Priority

Medium
Configure