|
|
|
|
|
|
by dantillberg
3943 days ago
|
|
|
> How about a <nojs> </nojs> pair in the primary document disabling any kind of javascript execution in the space between the tags. But wouldn't folks still be able to inject scripts by just writing `</nojs><script>alert('hi')</script><nojs>`? |
|
|