search

leizongmin / js-xss

Sanitize untrusted HTML (to prevent XSS) with a configuration specified by a Whitelist
http://jsxss.com
Other
5.2k stars 629 forks source link

When img's src attribute is base64, all strings in src will be cleared. #174

Closed shulandmimi closed 4 years ago

shulandmimi commented 5 years ago

as title

sijanec commented 4 years ago

I made a pull request for this https://github.com/leizongmin/js-xss/pull/189

leizongmin commented 4 years ago

Sorry, so late to deal with this problem. I have released a new version v1.0.7 and added image data-url to the default configuration.