Open ghost opened 8 years ago
There is a known XSS vulnerability in RedCloth which was reported 2012 and didn't get fixed until now. RedCloth seems to have some difficulties maintaining and closing bugs. Did you consider using Redcarpet?
Link: http://co3k.org/blog/redcloth-unfixed-xss-en
There is a known XSS vulnerability in RedCloth which was reported 2012 and didn't get fixed until now. RedCloth seems to have some difficulties maintaining and closing bugs. Did you consider using Redcarpet?
Link: http://co3k.org/blog/redcloth-unfixed-xss-en