The functionality extends beyond text files and includes support for HTML editing with integrated preview, spell checking, auto completion, HTML validation, templates and more.
超出的功能,包括文本文件为HTML与集成的预览,拼写检查,自动完成,HTML验证,编辑支持模板等等。
Such remedies as input validation and HTML escaping are a start, but they must be applied at all application points that accept data.
诸如输入验证和HTML转义这样的补救措施只是个开始,但必须将它们应用到接受数据的应用程序点。
To get rid of this vulnerability, you can either perform input validation or ensure that user-submitted data is always HTML-escaped before displaying it.
要消除这种漏洞,可以执行输入验证,或者确保用户所提交的数据总是在显示之前已被html转义。
应用推荐