style=foo:expres\sion(1058+{valueOf:alert})} and style=color:expres\sion(1834+{toString:alert} XSS Issue
Opened this issue · 1 comments
psinghracknap commented
What is this feature about (expected vs actual behaviour)?
How can I reproduce it?
Does it take minutes, hours or days to fix?
Any additional information?
psinghracknap commented
How can we fix for these strings as its returning same value after calling xss_clean() method.