BBCode Guide
Every thread @Yoshin posts in is now a movie trailer
![[Image: supercorrect.png]](https://i.ibb.co/g3J0P4F/supercorrect.png)
![[Image: s2n7oi.png]](https://files.catbox.moe/s2n7oi.png)
I wish there was a safe way to work HTML/CSS/JavaScript abuse into the site
(May 31, 2017 at 8:35 PM)rtsmarty Wrote:(May 31, 2017 at 5:50 PM)Mario Wrote: i think all we need to do is disable the quotation mark in that tag, but maybe other tags are just as exploitablecould just allow a-z 0-9 and - based on a quick look at the list of icons
I think space is fine, how much harm could be caused by allowing arbitrary classes added to it? I guess there could be some wild classes i don't know about
(May 31, 2017 at 9:59 PM)Mario Wrote:do any of these work(May 31, 2017 at 8:35 PM)rtsmarty Wrote:(May 31, 2017 at 5:50 PM)Mario Wrote: i think all we need to do is disable the quotation mark in that tag, but maybe other tags are just as exploitablecould just allow a-z 0-9 and - based on a quick look at the list of icons
I think space is fine, how much harm could be caused by allowing arbitrary classes added to it? I guess there could be some wild classes i don't know about
yes lmao
i mean it's not harm it's just general looking like shit
We should definitely figure out a way to allow the actual fontawesome classes because those are useful
(May 31, 2017 at 9:49 PM)rtsmarty Wrote:Stuff like on the previous page, like the button that turns every post fab(May 31, 2017 at 9:03 PM)Spritanium Wrote: I wish there was a safe way to work HTML/CSS/JavaScript abuse into the sitethat's literally what bbcode is for
unless you mean arbitrary html/css/javascript injection in which case why would you want that
Just goofy one-off effects like that. It's pretty impossible to allow that without posing a security risk though
Although the "click this to open a browser alert" might make a fun bbcode
Can you continue a sentence after a quote?
Users browsing this thread: