ChatCord application allows people to use a
instant messaging chat to exchanges messages and is based on a
chat however presents a
stored XSS which is due to
time field not validated correctly.
message field have been fixed by another PR merged inside the original repo (https://github.com/bradtraversy/chatcord/pull/17), however the
time field hasn't been sanitized at all :smile:
npm run dev