Comments (2)
sample iframe (I think it's because the iframe isn't immediately closed):
<iframe width="560" height="315" src="//www.youtube.com/embed/xHUQ5C_yMo4"
frameborder="0" allowfullscreen></iframe> <p>ss</p>
Original comment by [email protected]
on 30 Nov 2013 at 2:34
from pagedown.
If you just add "iframe" to the tag whitelist, all you're whitelisting is
<iframe></iframe>
If you want to be able to have attributes, you have to explicitly allow any
combination you want (look at how it's done with images for an example).
Like every sanitizer should, this one disallows everything by default.
Original comment by [email protected]
on 30 Nov 2013 at 8:39
- Changed state: Invalid
from pagedown.
Related Issues (20)
- ``` code blocks support HOT 2
- Requesting pull to expose Markdown.HookCollection to node.js
- iFrames not working? HOT 1
- URLs with underscore characters lose the underscore HOT 2
- Weird implementation of _DoItalicsAndBold HOT 5
- Customizing link markdown like Github does with usernames HOT 1
- Vector fromat Design
- will reproduce the problem? HOT 1
- How to convert HTML back to markdown? HOT 1
- Bullet multiple lines individually
- Update package on NPM
- XHTML error
- "Add heading" with no selected text doesn't add heading.
- Markdown.Sanitizer removes <a href= and <img src= tags referencing relative paths
- Patch for /PageDown.wiki
- Patch for /Markdown.Converter.js
- sanitizeHtml() stripping images with apostrophes in URL - Regex modification required
- Link dialog hook
- Equations with MathJax
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from pagedown.