Checkmarx complains that untrusted data is embedded into the output without proper sanitization or encoding, enabling an attacker to inject malicious code into the generated web-page.
Piece of spotted code:
Original message from Checkmarx:
No sanitization is provided for untrusted data.
Sanitization is provided for untrusted data.
No
