Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Escaped characters are ignored in url's #229

Closed
hallatore opened this issue Aug 14, 2013 · 3 comments · Fixed by #1135
Closed

Escaped characters are ignored in url's #229

hallatore opened this issue Aug 14, 2013 · 3 comments · Fixed by #1135

Comments

@hallatore
Copy link

[Test](http://www.test.org/index.php/XSS_(Style\)_stuff)

See how this renders correctly here. The following results in <link>Test</link>_stuff when parsed by marked.js
@azhang
Copy link

azhang commented Apr 8, 2014

+1 I'm wondering this too

@mnpenner
Copy link

mnpenner commented Jul 1, 2014

They're also ignored in headers. e.g.,

### C\#

Generates

<h3 id="c-">C\</h3>

Instead of

<h3 id="c-">C#</h3>

@katanacrimson katanacrimson mentioned this issue Oct 16, 2014
Closed
puzrin referenced this issue in pugjs/pug Oct 24, 2015
@fhemberger
Update vulnerable dependencies
5f7b667 
`marked` and `uglify-js` have several reported security issues in versions used by jade:
- https://nodesecurity.io/advisories/module/marked
- https://nodesecurity.io/advisories/module/uglify-js
@joshbruce
Copy link
Member

#984

This was referenced Jan 10, 2018
Closed
Closed
@Feder1co5oave Feder1co5oave mentioned this issue Mar 8, 2018
Merged
5 tasks
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging a pull request may close this issue.

[commonmark] make html comments, html inlines, html blocks and links compliant Feder1co5oave/marktex
4 participants
@hallatore @azhang @mnpenner @joshbruce