It's possible to send a request to the API endpoint at `/api/users/profile` with malformed or malicious values, such as: - `{"email":" "}` - `{"password":"\n"}` - `{"email":"}{/*Malicious code*/}"` # TODO: ### Add form validation to user update endpoint
It's possible to send a request to the API endpoint at
/api/users/profilewith malformed or malicious values, such as:{"email":" "}{"password":"\n"}{"email":"}{/*Malicious code*/}"TODO:
Add form validation to user update endpoint