• bionicjoey@lemmy.ca
    link
    fedilink
    arrow-up
    7
    ·
    1 year ago

    Is the prevalence of html escape sequences in post/comment text like & and   a Jerboa problem or a Lemmy problem?

    • Dessalines@lemmy.mlOPM
      link
      fedilink
      arrow-up
      7
      ·
      1 year ago

      A lemmy problem. We’ve started sanitizing the html as a short term fix due to the monumental amount of extremely creative XSS attacks people have been inventing.

    • MV (Jerboa dev)
      link
      fedilink
      arrow-up
      3
      ·
      1 year ago

      Lemmy 18.3 added it html sanitation which doesn’t seem to be properly configured