Closed AllenZou123 closed 3 years ago
I think this counts as an edge case for issue #67. It seems possible to inject Javascript code via any of the input boxes on our website. I'll leave some videos below as examples.
Changing background color (warning: rapidly changing colors) https://user-images.githubusercontent.com/36253789/111023232-76baf480-839d-11eb-8240-7242e09bce1a.mp4
Opening a ton of windows https://user-images.githubusercontent.com/36253789/111023285-b681dc00-839d-11eb-9b17-2eb3454a36ee.mp4
I think this counts as an edge case for issue #67. It seems possible to inject Javascript code via any of the input boxes on our website. I'll leave some videos below as examples.
Changing background color (warning: rapidly changing colors) https://user-images.githubusercontent.com/36253789/111023232-76baf480-839d-11eb-8240-7242e09bce1a.mp4
Opening a ton of windows https://user-images.githubusercontent.com/36253789/111023285-b681dc00-839d-11eb-9b17-2eb3454a36ee.mp4