Y
Hacker News
new
|
ask
|
show
|
jobs
by
olefoo
4047 days ago
Well the demo apparently doesn't sanitize the name field in messages it receives.
Because there is some quality XSS happening.
1 comments
pas256
4046 days ago
Thanks to phibit, that is now fixed
link