Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Fix XSS in the preview functionality #74

Open
wants to merge 1 commit into
base: develop
Choose a base branch
from
Open

Fix XSS in the preview functionality #74

wants to merge 1 commit into from

Conversation

j-mie
Copy link

@j-mie j-mie commented Sep 13, 2016

By default this library uses the including preview page, which doesn't make use of the markdown_safe function. I changed the page to use markdown_safe so that this page wouldn't allow XSS by default.

By default this library uses the including preview page, which doesn't make use of the markdown_safe function. I changed the page to use markdown_safe so that this page wouldn't allow XSS by default.
@invious
Copy link

invious commented Sep 16, 2016

Is this the thread I need to subscribe to to be notify of the preview button ever working again? For me it just created a blank textarea form

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

Successfully merging this pull request may close these issues.

3 participants