File tree Expand file tree Collapse file tree 1 file changed +5
-7
lines changed Expand file tree Collapse file tree 1 file changed +5
-7
lines changed Original file line number Diff line number Diff line change @@ -4913,13 +4913,11 @@ <h3>Complex Language Markup</h3>
49134913 </ p >
49144914
49154915 < p >
4916- Implementers considering the use of HTML to encode complex language and/or
4917- base direction information might consider deconstructing the data into a
4918- format that does not require complex markup, such as an array of elements
4919- that can use a simpler form of language and/or base direction expression.
4920- If such an approach is not possible, implementers are advised to analyze
4921- how an attacker would use the data to mount injection attacks against a
4922- consumer of the data and deploy mitigations for the identified attacks.
4916+ If implementers feel that they have to use HTML, or other markup languages
4917+ that are capable of containing executable scripts, to achieve a particular
4918+ use case, they are advised to analyze how an attacker would use the markup to
4919+ mount injection attacks against a consumer of the markup and deploy mitigations
4920+ for the identified attacks.
49234921 </ p >
49244922 </ section >
49254923
You can’t perform that action at this time.
0 commit comments