title: Use of unescaped data in HTML templates shortname: use-of-unescaped-data-in-html-templates description: The software does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output. anchor: gosec group: top10-injection pretty_name: G203: Use of unescaped data in HTML templates
Use of unescaped data in HTML templates¶
The software does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output.