Hacker News new | past | comments | ask | show | jobs | submit login

It doesn't take input from the user, but it does use untrusted input in a way that allows XSS. See https://news.ycombinator.com/item?id=7128442 .



Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: