Joined June 2014
·
noitidart

Noitidart

San Jose, CA
·
·

Posted to Safe vs Unsafe jQuery Methods over 1 year ago

Can you please show an example of the XSS safe DOM insertion. Would it be:

jQuery('<div/>', {
    id: 'foo',
    href: 'http://google.com',
    title: 'Become a Googler',
    rel: 'external',
    text: 'Go to Google!'
}).appendTo('#mySelector');

?

Thank you

Posted to Safe vs Unsafe jQuery Methods over 1 year ago

Superb post, thank you for this!

Achievements
35 Karma
515 Total ProTip Views
Altruist
Increase developer well-being by sharing at least 20 open source projects
Forked
Have a project valued enough to be forked by someone else
Charity
Fork and commit to someone's open source project in need
Interests & Skills
CSS
JavaScript
Open Source
xbl/xml/xul
xpcom
HTML
SQLite
MYSql
SQL
PHP
VB6
VBA
jquery
prototype/script.aculo.us