Hi, I couldn't find out, how to notify you correctly..
Can you please take a look at WindowIdHtmlRenderer, line 62 to 78?My tests confirm, that you take the unchecked value of windowId, which may have been provided by the client at will.
So a javascript injection at line 78 is possible. Details may be provided if necessary. Regards and my greatest thanks for your work and commitment. Thomas
