![http://xssplayground.net23.net/xss"onmouseover="alert(1);%20imagefile.svg](http://xssplayground.net23.net/xss"onmouseover="alert(1);%20imagefile.svg){kind=link}
Ashar Javed
@milo But in the example case there is no JavaScript at all. It is a very simple and harmless style then why escape : in that case?
@milo Isn't it a major weakness? It means Latte has an implicit assumption that every input is harmful. `Style Context` If it has an implicit assumption that every input is...
@milo I think what you said is that Latter support following `Style Context`
It is not a weakness because now I understand what you wanted to say. I am wondering about : escaping and the confusion arise because of test-bed: see http://hoola.cz/nette-xss-test/?do=form-submit and...
Thanks! Please make sure that I can set the value of `width:{input arrive here}` and `background-image:{input arrive here}`. I want to test and will give you feedback.
@milo Would you please tell me that have you find time to update the test-bed? One more thing I would like to have your take on is: e.g., `...` if...
@Majkl578 So you do not considered a false positive an ISSUE :D
Hi @yakatz and @jejacks0n Sorry, I do not understand you because it does not make any sense to allow JavaScript URI and user has to implement own filter. It would...
Hi @templaza You will see the code below and no one can XSS this code in style context. Few weeks ago I had announced an XSS challenge worth 1000USD and...
@templaza As far as backslahses are concerned ... make sure use FOUR BACKSLAHES in bad_char array ... The GitHub formatting somehow removes the two slashes and you can only see...