HTML can do anything in the body of an issue

legutierr / pirate-politics

Automatically exported from code.google.com/p/pirate-politics

0 stars 0 forks source link

HTML can do anything in the body of an issue #21

Closed GoogleCodeExporter closed 8 years ago

GoogleCodeExporter commented 8 years ago

You can put <script> tags and whatever else you'd like in the body of an issue 
and it isn't filtered. I haven't seen this problem appear in other text fields, 
but I haven't looked through everything

Original issue reported on code.google.com by andrufas...@gmail.com on 22 Jan 2011 at 4:21

GoogleCodeExporter commented 8 years ago

This problem has been fixed. Harmful HTML is removed from all text before it is 
entered into the DB, allowing users to continue to utilize Markdown.

Original comment by fragro on 9 Feb 2011 at 12:11

Changed state: Fixed