Yikes. Dangerously incorrect content on @MozDev regarding innerHTML and "<script>". Just submitted a change. https://developer.mozilla.org/en-US/docs/DOM/element.innerHTML …
-
-
Replying to @slicknet
@slicknet It’s not exactly “harmless” (https://developer.mozilla.org/en-US/docs/DOM/element.innerHTML$compare?from=345583&to=365009 …) either… E.g. `el.innerHTML = '<img src=x onerror=alert(1)>';`.2 replies 0 retweets 0 likes
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.
JavaScript, HTML, CSS, HTTP, performance, security, Bash, Unicode, i18n, macOS.