[SOLVED] < and > signs in code
Replies 3
Flatboard accepts in part the markdown format.
Because the signs :
can open the door to malicious code in Javascript, so use the bbcode [code] to normally display the unexecuted html code.
ex: <script>alert('Alert XSS')</script>
In the [Doc page](view.php/plugin/page/p/docs), i authorize all html & markdown content, because only admin post page.
**We must not forget that any intervenor access to the editor to post a new topic or reply.**
Because the signs :
< >
can open the door to malicious code in Javascript, so use the bbcode [code] to normally display the unexecuted html code.
ex: <script>alert('Alert XSS')</script>
In the [Doc page](view.php/plugin/page/p/docs), i authorize all html & markdown content, because only admin post page.
**We must not forget that any intervenor access to the editor to post a new topic or reply.**
- Before ask a question, read the documentation.
- 🎉 Featured as #1 product of the day on Product Hunt
- Please like in alternativeto.net 👍🏻
- ╰☆╮Flatboard╰☆╮ is a open source and community contributions are essential to project success!
- <TextField>, my new CMS project designed by a passionate developer, for developers!
- I am currently busy 😫.
Suggested Topics
erikjohnson@cfa4403a
started My password has been stolen.. do not use this software.
General Questions
Fred
started Flatboard 2.5 PARIS is here!
Announcements
AlexanderLiebrecht
started plugin Mail Notification of new Topic Replies
Feature Requests
AlexanderLiebrecht
started plugin Contact Form for Flatboard Forum as a Plugin
Feature Requests