[SOLVED] < and > signs in code
Replies 3
Flatboard accepts in part the markdown format.
Because the signs :
can open the door to malicious code in Javascript, so use the bbcode [code] to normally display the unexecuted html code.
ex: <script>alert('Alert XSS')</script>
In the [Doc page](view.php/plugin/page/p/docs), i authorize all html & markdown content, because only admin post page.
**We must not forget that any intervenor access to the editor to post a new topic or reply.**
Because the signs :
< >
can open the door to malicious code in Javascript, so use the bbcode [code] to normally display the unexecuted html code.
ex: <script>alert('Alert XSS')</script>
In the [Doc page](view.php/plugin/page/p/docs), i authorize all html & markdown content, because only admin post page.
**We must not forget that any intervenor access to the editor to post a new topic or reply.**
- Before ask a question, read the documentation.
- 🎉 Featured as #1 product of the day on Product Hunt
- Please like in alternativeto.net 👍🏻
- ╰☆╮Flatboard╰☆╮ is a open source and community contributions are essential to project success!
- <TextField>, my new CMS project designed by a passionate developer, for developers!
- I am currently busy 😫.
Suggested Topics
Alexander Liebrecht
started Show your Flatboard Forum projects :)
Open Bar
AlexanderLiebrecht
started plugin Search Engine friendly URLs for Flatboard
Feature Requests
JPRuehmann
started Math captcha not working deleting Threads.
Bug reports
Alexander Liebrecht
started Mobile Navigation in Flatboard Forum
General Questions