I tried applying<div/onmouseover='alert("hacked")'> style="x:"> string to attack, but it was not blocked by antisamy library. Does anyone know why it's not prevented against Antisamy library?
Anrisamy XSS validation not working for JavaScript injection
Asked
Active
Viewed 63 times
0
halfer
- 19,824
- 17
- 99
- 186
user2523507
- 11
- 3
-
This might be better logged as a bug with the author. If it is open source, maybe they have a public bug tracker?
– halfer
Sep 13 '16 at 07:34
-
It's incorrect ly formatted HTML. Cut and paste error or what you really used?
– The Archetypal Paul
Sep 13 '16 at 08:14
-
Yes I am looking for its forum or support team as I am not aware of it.
– user2523507
Sep 13 '16 at 08:43
Asked
Active
Viewed 63 times
0
halfer
- 19,824
- 17
- 99
- 186
user2523507
- 11
- 3
-
This might be better logged as a bug with the author. If it is open source, maybe they have a public bug tracker? – halfer Sep 13 '16 at 07:34
-
It's incorrect ly formatted HTML. Cut and paste error or what you really used? – The Archetypal Paul Sep 13 '16 at 08:14
-
Yes I am looking for its forum or support team as I am not aware of it. – user2523507 Sep 13 '16 at 08:43