HTML tags not encoded

  • Resolved JS Morisset

    (@jsmoriss)


    6 years, 12 months ago

    Would it be possible to encode HTML tags in ticket replies, so they display properly and aren’t a security problem?

    Thanks,

    js.

Viewing 1 replies (of 1 total)
  • Plugin Contributor SupportCandy

    (@supportcandy)

    6 years, 9 months ago

    Hello there,

    Sorry for the delay replying in here!

    We have fixed XSS security issues in last update v2.0.6.

    Please update it to latest version and let us know whether it is fixed or not.
    We striped out script tags so that JS code will not execute given in reply.

Viewing 1 replies (of 1 total)

The topic ‘HTML tags not encoded’ is closed to new replies.