Markdown and Cross Site Scripting

added by DotNetKicks
9/4/2018 1:11:23 PM

1 Kicks, 832 Views

I've been getting a number of requests for providing XSS support in my various Markdown components. While Markdown itself makes no provision for HTML Sanitation, if you use Markdown for capturing user input some sort of sanitation is required to avoid potential XSS attacks.