GitHub

Insecure Script Injection via innerHTML

This repository demonstrates a common yet easily overlooked bug in HTML involving the insecure use of innerHTML to inject script tags. Dynamically adding script tags using innerHTML can lead to ...
GitHub

XSS Vulnerability in HTML using innerHTML

This repository demonstrates a common but easily overlooked vulnerability in HTML: Cross-Site Scripting (XSS) via unsanitized user input within innerHTML. The bug.html file shows how directly ...