You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
I'm not 100% sure this is a bug, but it's an issue we've faced.
When inserting a background-image style attribute on IE9, the browser always quotes it with double quotes (").
However, when sanitizing, double quotes get translated into single quotes, and the single quotes on background-image get encoded.
I'm not 100% sure this is a bug, but it's an issue we've faced.
When inserting a background-image style attribute on IE9, the browser always quotes it with double quotes (").
However, when sanitizing, double quotes get translated into single quotes, and the single quotes on background-image get encoded.
Here's a test case:
I was able to work around this, and will be improving the solution to avoid false matches, but it doesn't feel right:
Opinions?
The text was updated successfully, but these errors were encountered: