Closed georgiaewhitney closed 1 year ago
Can run <img onerror="alert('hello!')"> in input field and bring up retaining alert, and allows empty input form data entry.
<img onerror="alert('hello!')">
Oops. We didn't actually have sanitisation implemented yet. Fixed in PR #54 probably.
Can run
<img onerror="alert('hello!')">
in input field and bring up retaining alert, and allows empty input form data entry.