Skip to content

Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') ('Code Injection') [VID:131] #194

New issue
New issue
Open
Open
Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') ('Code Injection') [VID:131]#194
Labels
Veracode Policy ScanA Veracode Flaw found during a Policy or Sandbox ScanVeracodeFlaw: HighA Veracode Flaw, High severity
@github-actions

Description

@github-actions
github-actions
bot
opened on Jul 5, 2023

https://github.com/aszaryk/github-verademo/blob/db6851f1c71e95f0033b40585352fe04df4d5563/undefined#LNaN-LNaN

Filename: undefined

Line: undefined

CWE: 74 (Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') ('Code Injection'))

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

Metadata

Metadata

Assignees

No one assigned

    Labels

    Veracode Policy ScanA Veracode Flaw found during a Policy or Sandbox ScanVeracodeFlaw: HighA Veracode Flaw, High severity

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions