56
submitted 1 year ago* (last edited 1 year ago) by mundane@feddit.nu to c/boostforlemmy@lemmy.world

Cross posting here since Boost sufferers from the mentioned issue.

you are viewing a single comment's thread
view the rest of the comments
[-] stifle867@programming.dev 23 points 1 year ago* (last edited 1 year ago)

Overzealous character escaping most likely. It's to prevent certain types of exploits when displaying user submitted content as users could post, for example, javascript code that would then run on the page. By "escaping" certain characters it prevents this. For example by changing & to & it will instruct the browser to change it from a literal ampersand to a display ampersand. The problem then comes when some container elements don't use these display ampersands and just display the literal code. I'm sorry I couldn't explain it better.

You can see exactly what I mean if you reply to this comment and type & then type it again but inside of a code block (inside of two backticks `)

this post was submitted on 25 Oct 2023
56 points (98.3% liked)

Boost For Lemmy

6777 readers
1 users here now

Community of the Android app Boost for Lemmy Play Store Link

founded 1 year ago
MODERATORS