[SOLVED] < and > signs in code
Replies 3
Flatboard accepts in part the markdown format.
Because the signs :
can open the door to malicious code in Javascript, so use the bbcode [code] to normally display the unexecuted html code.
ex: <script>alert('Alert XSS')</script>
In the [Doc page](view.php/plugin/page/p/docs), i authorize all html & markdown content, because only admin post page.
**We must not forget that any intervenor access to the editor to post a new topic or reply.**
Because the signs :
< >
can open the door to malicious code in Javascript, so use the bbcode [code] to normally display the unexecuted html code.
ex: <script>alert('Alert XSS')</script>
In the [Doc page](view.php/plugin/page/p/docs), i authorize all html & markdown content, because only admin post page.
**We must not forget that any intervenor access to the editor to post a new topic or reply.**
- Before ask a question, read the documentation.
- 🎉 Featured as #1 product of the day on Product Hunt
- Please like in alternativeto.net 👍🏻
- ╰☆╮Flatboard╰☆╮ is a open source and community contributions are essential to project success!
- <TextField>, my new CMS project designed by a passionate developer, for developers!
- I am currently busy 😫.
Suggested Topics
Ben@84171e7c
started solved Managed to Lock MySelf out of My Admin Account
Open Bar
Alexander Liebrecht
started solved Increase the number of topic characters
General Questions
Fred
started FlatBoard v0.7.4 Beta
Announcements
Fred
started Flatboard 1.0.5
Announcements