Code injection with javascript: URL in JSX

ID

javascript.react_javascript_url

Severity

high

Resource

Injection

Language

JavaScript

Tags

CWE:94, React

Description

Rationale

Remediation

Configuration

The detector has no specific configurable parameters.

References

CWE-94 : Improper Control of Generation of Code ('Code Injection').
OWASP Top 10 2021 - A03 : Injection.