<!DOCTYPE html>
<html>
<head>
<script>
function XSSPrevent(){
var usercomments = document.getElementById('usertext').value;
if(usercomments.contains("<script>"){
ale
我是CheckMarx的新手,可以防止XSS攻擊。我得到這個錯誤: Method %> at line 1 of \app\src\web\searchresults.jsp gets user input for the getSearchResults element. This element’s value then flows through the code without being