(10/08/21 9:04), Mark E. Haase wrote:
I have highlighting working on my project (indexing content for a web app),
but the idea of highlighting with tags doesn't make sense to me. It
seems that it opens up the system to XSS attacks if you echo search result
data (with highlights) into a web page
I have highlighting working on my project (indexing content for a web app),
but the idea of highlighting with tags doesn't make sense to me. It
seems that it opens up the system to XSS attacks if you echo search result
data (with highlights) into a web page.
Example: Index the following string:
