-
Notifications
You must be signed in to change notification settings - Fork 2.4k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
svg lol attack #2325
Comments
I think you did a little fliperoo there young lad, the expected behaviour should be to not crash the page. |
Interesting, I'll test this at some point. |
funny |
True lol |
You are a furry :333333 |
Maybe |
interesting, I will look into expanding further with this, maybe cause a trillion laughs. Side note, this is also tested on our school instance with discussions, also seems to crash it |
Summary: ability to crash the page with svg pfp
Steps to reproduce:
make a svg file and put this ^
download a image to a eprofile, to make a public file
use api to change pfp to that svg with user[avatar][url]
refresh page with pfp and crashes
or just upload to a discussion
Expected behavior: crashes the page
Actual behavior: not crash it
maybe this has been fixed, I did this on my school's instance
The text was updated successfully, but these errors were encountered: