|
|
|
|
|
|
by nwh
4888 days ago
|
|
|
You could just have a dedicated domain for it, then there's no risk of XSS. It's doable, but it would be rather fragile. The render bomb point is a little trickier, as you can use some detailed filters to crash most browsers. Heck, even a single simple shape will crash any version of iOS. |
|
|