Open BenjaminHofstetter opened 1 year ago
[ ] System Information
[ ] Describe the bug Potential Cross-Site Scripting (XSS) vulnerability
[ ] To Reproduce
[ ] Expected behavior HTML input is not escaped.
https://tarekraafat.github.io/autoComplete.js/#/usage
Curious, what kind of flexibility is mentioned here?
When I type markup in a combo box, I do not see circumstances in which I'd want that added actual DOM to the page
[ ] System Information
[ ] Describe the bug Potential Cross-Site Scripting (XSS) vulnerability
[ ] To Reproduce
[ ] Expected behavior HTML input is not escaped.