HTML is embedded without escaping (possible XSS) #147
Description
It looks like our website https://clickhouse.tech/blog/en/ is using your script to embed comments from Hacker's News.
It leads to possible XSS and broken HTML markdown.
{{ message }}
It looks like our website https://clickhouse.tech/blog/en/ is using your script to embed comments from Hacker's News.
It leads to possible XSS and broken HTML markdown.