HTML Report data is not HTML encoded

XSS Vulnerability evidence is ironically injected into the HTML report. See example excerpt below:

```html
        <tr>
            <td width="20%">
                <p class="lead font-italic" style="font-size: 1.1em;">&nbsp;&nbsp;&nbsp;&nbsp;Evidence</p>
            </td>
            <td width="80%">
                <p class="lead"></blockquote><script>alert(1);</script><blockquote></p>
            </td>
        </tr>
```

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

HTML Report data is not HTML encoded #54

Metadata

Assignees

Labels

Projects

Milestone

Relationships

Development

HTML Report data is not HTML encoded #54

Description

Metadata

Metadata

Assignees

Labels

Projects

Milestone

Relationships

Development

Issue actions