diff options
Diffstat (limited to 'src')
| -rw-r--r-- | src/xss/InjectionChecker.js | 3 |
1 files changed, 2 insertions, 1 deletions
diff --git a/src/xss/InjectionChecker.js b/src/xss/InjectionChecker.js index 3d4303b..a903063 100644 --- a/src/xss/InjectionChecker.js +++ b/src/xss/InjectionChecker.js @@ -293,7 +293,8 @@ XSS.InjectionChecker = (async () => { ), _maybeJSRx: new RegExp( - '(?:(?:\\[[^]+\\]|\\.\\D)(?:[^]*\\([^]*\\)|[^*]`[^]+`|[^=]*=[^=][^]*\\S)' + + '(?:(?:\\[[^]+\\]|\\.\\D)[^;&/\'"]*(?:/[^]*|)' + + '(?:\\([^]*\\)|[^]*`[^]+`|=[^=][^]*\\S)' + // double function call '|\\([^]*\\([^]*\\)' + ')|(?:^|\\W)(?:' + IC_EVAL_PATTERN + |