XSS Fix bypass
niksthehacker opened this issue · comments
Hi,
The XSS fix for href can easily be bypassed using
jaVasCript:
Pattern. Please have a look.
Regards,
Nikhil
bustle / mobiledoc-dom-renderer
niksthehacker opened this issue · comments
Hi,
The XSS fix for href can easily be bypassed using
jaVasCript:
Pattern. Please have a look.
Regards,
Nikhil
