[SOLVED] < and > signs in code
Replies 3
Flatboard accepts in part the markdown format.
Because the signs :
can open the door to malicious code in Javascript, so use the bbcode [code] to normally display the unexecuted html code.
ex: <script>alert('Alert XSS')</script>
In the [Doc page](view.php/plugin/page/p/docs), i authorize all html & markdown content, because only admin post page.
**We must not forget that any intervenor access to the editor to post a new topic or reply.**
Because the signs :
< >
can open the door to malicious code in Javascript, so use the bbcode [code] to normally display the unexecuted html code.
ex: <script>alert('Alert XSS')</script>
In the [Doc page](view.php/plugin/page/p/docs), i authorize all html & markdown content, because only admin post page.
**We must not forget that any intervenor access to the editor to post a new topic or reply.**
- Before ask a question, read the documentation.
- 🎉 Featured as #1 product of the day on Product Hunt
- Please like in alternativeto.net 👍🏻
- ╰☆╮Flatboard╰☆╮ is a open source and community contributions are essential to project success!
- <TextField>, my new CMS project designed by a passionate developer, for developers!
- I am currently busy 😫.
Suggested Topics
Fred
started Logo and social networks
Announcements
XHiddenProjects
started plugin Back to making plugins again!
Announcements
livetheenergy
started translation Italian localization
Resources
Fred
started New Flatboard UI, for or against?
Open Bar