• watch on iTunes
• follow on Twitter
• follow on Facebook
• subscribe to RSS feed

• Browse Episodes
• RailsCasts Pro
• Notifications
• About

RailsCasts Pro episodes are now free!

Learn more or hide this

Yura Taras's Profile

GitHub User: ytaras

Site: http://twitter.com/sampik

Comments by Yura Taras

Yura Taras on #382 Tagging 2012-09-23 03:32:03

Do we have XSS vulnerability because of displaying 'raw tags.map'? Hacker could inject some sort of malicious code in a tag name so it would be sent to user without escaping.