solomax commented on pull request #93: URL: https://github.com/apache/openmeetings/pull/93#issuecomment-630976739
As you can see here https://openmeetings.apache.org/security.html There were a lot of XSS related reports without CSP XSS is possible via Appointment description (probably) This feature _can_ be added, but I expect troubles here :( I'll check the code ---------------------------------------------------------------- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. For queries about this service, please contact Infrastructure at: [email protected]
