zafire06
commented
11 years ago Closed zafire06 closed 11 years ago
zafire06
commented
11 years ago zafire06
commented
11 years ago now _.escape would escape all HTML entities, unless something happened between my push and someone else's push, which is very likely
...since it will potentially ruin the layout. They could enter some sort of malicious codes as well. See a cute, harmless example here: http://23.23.177.220/~cruamch1/litterfall/#data/update/trees/site/beech/plot/1/treeid/40/subtreeid/1