Looks like the messages can serve XSS payloads. I just came across one. Perhaps ... | Hacker News

Hacker News new | past | comments | ask | show | jobs | submit

login

netsec_burn on June 1, 2020 | parent | context | favorite | on: This Website Will Self Destruct

Looks like the messages can serve XSS payloads. I just came across one. Perhaps self destruction of this codebase wouldn't be so bad.

FemmeAndroid on June 1, 2020 [–]

That shouldn't be possible. They might try to, but it won't work. If you really did see one, please let me know what it was doing so I can figure out what happened, and if someone else does, please report it. There's a report button at the bottom of every page.

Consider applying for YC's Summer 2025 batch! Applications are open till May 13
Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact