React's dangerously set inner HTML detected.

Description

There are Cross-Site Scripting (XSS) vulnerabilites when using React's dangerouslySetInnerHTML with unsanitized data.

Remediations

✅ Sanitize data when using dangerouslySetInnerHTML

  <div
dangerouslySetInnerHTML={{__html: sanitize(data)}}
/>

Resources

Associated CWE

OWASP Top 10