Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

HTML Escaping input text #5

Open
TheBox193 opened this issue Jun 24, 2015 · 0 comments
Open

HTML Escaping input text #5

TheBox193 opened this issue Jun 24, 2015 · 0 comments
Assignees
@TheBox193
Labels
bug
Milestone
1.1.1

Comments

@TheBox193
Copy link
Owner

There is a bug when a user types a string with characters like " and possibly others. The input value typed doesn't get selected or doesn't display correctly. It is possible there is a XXS vulnerability since we are trusting text input values currently as well.
@TheBox193 TheBox193 added the bug label Jun 24, 2015
@TheBox193 TheBox193 self-assigned this Jun 24, 2015
@TheBox193 TheBox193 added this to the 1.0.3 milestone Jun 24, 2015
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@TheBox193 TheBox193

Labels
bug
Projects
None yet
Milestone
1.1.1
Development

No branches or pull requests
1 participant
@TheBox193