[SOLVED] < and > signs in code
Replies 3
Flatboard accepts in part the markdown format.
Because the signs :
can open the door to malicious code in Javascript, so use the bbcode [code] to normally display the unexecuted html code.
ex: <script>alert('Alert XSS')</script>
In the [Doc page](view.php/plugin/page/p/docs), i authorize all html & markdown content, because only admin post page.
**We must not forget that any intervenor access to the editor to post a new topic or reply.**
Because the signs :
< >
can open the door to malicious code in Javascript, so use the bbcode [code] to normally display the unexecuted html code.
ex: <script>alert('Alert XSS')</script>
In the [Doc page](view.php/plugin/page/p/docs), i authorize all html & markdown content, because only admin post page.
**We must not forget that any intervenor access to the editor to post a new topic or reply.**
- Before ask a question, read the documentation.
- 🎉 Featured as #1 product of the day on Product Hunt
- Please like in alternativeto.net 👍🏻
- ╰☆╮Flatboard╰☆╮ is a open source and community contributions are essential to project success!
- <TextField>, my new CMS project designed by a passionate developer, for developers!
- My last project Fast⚡︎CMS, a Flat-File cms.
- I am currently busy 😫.
Suggested Topics
northivanastan
started solved Skip unpacking?
General Questions
Simon
started 🇫🇷 Connexion
International Discussions
Fred
started plugin Google Tools
Resources