Vanilla 1 is no longer supported or maintained. If you need a copy, you can get it here.

HackerOne users: Testing against this community violates our program's Terms of Service and will result in your bounty being denied.

About "HTML Formatter1.7"

beerui

October 2006 edited November 2006 in Vanilla 1.0 Help

"
"

It doesn't work in comments body, why ?

0

Comments

WallPhone

October 2006

Because the user's ability to link a script such as that would leave your server vulnerable to cross site scripting attacks.

Say, for an example, an attaker could write a script to send him the cookies (and thus access to the accounts) of every member who read that message.

0
beerui

November 2006

"wall phone" Thanks

0

This discussion has been closed.

Howdy, Stranger!

It looks like you're new here. Sign in or register to get started.

Sign In Register

Categories

In this Discussion

Tired of hosting yourself? Upgrade to the Cloud!