[Security] XSS vulnerability in scrumHelper.js: escapeHtml() exists but is never applied to API-sourced data in report rendering

April 14, 2026 ยท #546
View on GitHub
JavaScript Difficulty: Medium

Labels

bug

Parent Repository

fossasia/scrum_helper

JavaScript repository

1,286 188
All Issues Back to scrum_helper

Sign in required

Authenticate to use favourites & bookmarks

5