Open weujieytt opened 2 years ago
The markdown preview executes the xss vector, and the stored xss occurs in the community posting, which can be fixed by the DOMPurify project.
<img src=1 onerror=alert(1)>
The markdown preview executes the xss vector, and the stored xss occurs in the community posting, which can be fixed by the DOMPurify project.
<img src=1 onerror=alert(1)>