I am working in ERPNext but the fields are not validate. I can’t find any validation for XSS or others. How can i add validation for doctype fields.
What kind of validation do you want? Why do you need XSS validations?
I was write a code in a field like - “< script >alert(‘alert’)< /script >”. after save the page here show me an alert box. so we need a validation there. we can’t trust out software operator. we must add proper validation for any kind of attack.
How can i sanitize all field data.