My final solution :
[image: bb.png]
On Saturday, November 6, 2021 at 6:03:59 PM UTC+2 st...@jigsawtech.co.uk
wrote:
> Are you using the safe filter in your templates as otherwise that "attack"
> won't do anything but you are right that other XSS attack vectors can be
> used as per the example
Are you using the safe filter in your templates as otherwise that "attack"
won't do anything but you are right that other XSS attack vectors can be
used as per the example in the docs
-
https://docs.djangoproject.com/en/3.2/topics/security/#cross-site-scripting-xss-protection
If you are using
hi all
i want to sanitize 'content' field from XSS attacks in django models
so i installed 'bleach' and used but script like "an
evil() example" store as is (without sanitize script)
Note: i need bleach via function in models
Any idea ?
Thanks
[image: bleach-Models.png]
--
You received this
3 matches
Mail list logo