From ad4f75a223f7ee00c4bab8b9d76e28c3ebf9e4d0 Mon Sep 17 00:00:00 2001
From: Hyunyoung Cho <zerohch0@gmail.com>
Date: Fri, 17 Jan 2020 01:10:34 +0900
Subject: [PATCH] Add scroll

---
 lib/helpers/isValidXss.js | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/lib/helpers/isValidXss.js b/lib/helpers/isValidXss.js
index 5ca04300d6..951240ee62 100644
--- a/lib/helpers/isValidXss.js
+++ b/lib/helpers/isValidXss.js
@@ -1,7 +1,7 @@
 'use strict';
 
 module.exports = function isValidXss(requestURL) {
-  var xssEventRegex = /(\b)on(click|error|load|mouse\w+|key\w+|focus\w?|blur|change|input|drag\w?|resize|dbclick|contextmenu|drop|select|message)=/
+  var xssEventRegex = /(\b)on(click|error|load|mouse\w+|key\w+|focus\w?|blur|change|input|drag\w?|resize|dbclick|contextmenu|drop|select|message|scroll)=/;
   var xssJSRegex = /javascript|(<\s*)(\/*)script/gi;
   return xssJSRegex.test(requestURL) || xssEventRegex.test(requestURL);
 };