Blog Documentation Book a Demo
Options

About "HTML Formatter1.7"

beeruibeerui
edited November 2006 in Vanilla 1.0 Help
"
"

It doesn't work in comments body, why ?

Comments

  • WallPhoneWallPhone
    Because the user's ability to link a script such as that would leave your server vulnerable to cross site scripting attacks.

    Say, for an example, an attaker could write a script to send him the cookies (and thus access to the accounts) of every member who read that message.
  • beeruibeerui
    "wall phone" Thanks
This discussion has been closed.