Skip to content

Released version 2.2.1
Compare
Choose a tag to compare
@dg dg released this 25 May 01:39
· 664 commits to master since this release
v2.2.1
918a80c

Added protection against innerHTML mXSS vulnerability.

IE8 for code <div attr="´´foo=bar"> produces invalid innerHTML <div attr=´´foo=bar>. Adding a space at the end of the attribute forces IE to put quotes around the attribute.

For the details you can have a look at the diff.

Assets 2
Loading