You introduce the fragment back to the DOM, triggerring the XSS I guess. Sanitization is missing.
-
-
I think that wouldn't be used much. I've used innerHTML in the past because the code is so dense.
-
yes, I guess this requires some thoughts.
End of conversation
New conversation -
-
-
yes something like that, but with usability in mind. We have some implementations for the server-side.
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.