search

atjiu / pybbs

更实用的Java开发的社区(论坛),Better use of Java development community (forum)
GNU Affero General Public License v3.0
1.84k stars 706 forks source link

added a sanitizer to avoid xss attacks #159

Closed li-sui closed 2 years ago

li-sui commented 2 years ago

implemented a sanitizer to prevent XSS attacks for the following API:

/search?keyword=
admin/comment/list?startDate=
admin/user/list?username=
admin/sensitive_word/list?word=
admin/tag/list?name=

close #158

atjiu commented 2 years ago

Thank you very much !!!