Post AxiISQW2IIQ727DbBw by ozoramore_dev@social.t2arc.net
 (DIR) More posts by ozoramore_dev@social.t2arc.net
 (DIR) Post #AxiISQW2IIQ727DbBw by ozoramore_dev@social.t2arc.net
       2025-08-30T05:24:54.538171Z
       
       0 likes, 0 repeats
       
       @silverpillIt's HTML injection.We have to fix it.RE: https://social.t2arc.net/objects/0198f968-140f-052f-623e-3e5380e51094
       
 (DIR) Post #AxiISS2gcO8DlfVBiq by silverpill@mitra.social
       2025-08-31T01:30:01.830331Z
       
       0 likes, 0 repeats
       
       @ozoramore_dev Thank you, it's fixed in version 4.9.0Looks like the damage is limited because the title is truncated to 75 characters.
       
 (DIR) Post #AxiJGC0sUL8yX8NI4O by adiz@mtl.jinxian.casa
       2025-08-31T01:39:48.886227Z
       
       0 likes, 0 repeats
       
       @silverpill 🎉 We're on 4.9.0 now! @ozoramore_dev
       
 (DIR) Post #AxyPBga57QOG8zQxfc by silverpill@mitra.social
       2025-09-07T20:01:05.890188Z
       
       1 likes, 0 repeats
       
       @ozoramore_dev To reduce the likelihood of this happening again, I started using Jinja for templating:https://codeberg.org/silverpill/mitra/commit/7a4a5a571ea2677dcca19323e82fd483f56d701bIt escapes all input by default, so we don't have to worry about that.