-
Notifications
You must be signed in to change notification settings - Fork 1.7k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Reflected XSS vulnerability #703
Comments
@akkuman |
<p></p><svg><svg onload=alert('xss')> Above code is enough to trigger XSS Also, the original payload didn't work on my
(Not sure why it doesn't work on Safari, although the rendered DOM is the same.) I think it is kind of Mutation XSS. |
This still happens in 2.0.0.
|
The text was updated successfully, but these errors were encountered: