Blog Documentation Book a Demo

WYSIWYG editor plugin - a major security vulnerability ?

PolishForum_plPolishForum_pl New
edited December 2012 in Vanilla 2.0 - 2.8

By default there is only a plain text post editor. But in the dashboard there is a WYSIWYG plugin by Mirabilia Media.
The thing is, it allows to edit the HTML of a post. Does this mean that enabling it exposes the site to a wide range of injection attacks?

Comments

Sign In or Register to comment.