Cross-Site Scripting (XSS) Vulnerability in Markdown Library

neutronX / django-markdownx

Comprehensive Markdown plugin built for Django

https://neutronx.github.io/django-markdownx/

Other

839 stars 152 forks source link

Cross-Site Scripting (XSS) Vulnerability in Markdown Library #255

Closed Ilopesr closed 1 year ago

Ilopesr commented 1 year ago

I have encountered a potential cross-site scripting (XSS) vulnerability in the Markdown library. When using the library's show_markdown filter in Django, it is possible for HTML Githubissues.

Githubissues is a development platform for aggregating issues.