No More Posting New Topics!

If you have a question or an issue, please start a thread in our Github Discussions Forum.
This forum is closed for new threads/ topics.

Navigation

    Quasar Framework
    • Login
    • Search
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Groups
    • Search

    somewhat disturbing news about possible XSS in Vue

    Framework
    2
    2
    762
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • qyloxe
      qyloxe last edited by

      it needs server side rendering and using Vue templates - BUT - it’s perfectly possible in Quasar framework, too:

      https://github.com/dotboris/vuejs-serverside-template-xss

      spoiler:

      this is quite funny by itself:

      {{ constructor.constructor(“alert(‘xss’)”)() }}

      1 Reply Last reply Reply Quote 1
      • rstoenescu
        rstoenescu Admin last edited by

        Hi, probably, but this is due to Vue 🙂

        1 Reply Last reply Reply Quote 0
        • First post
          Last post