id summary reporter owner description type status priority component severity resolution keywords cc release 11593 Style has not been sanitized uchida_t@… Mikael Relbe "I input CSS Expression in box. {{{ {{{#!box style=""width:expression(alert(1));"" }}} }}} Output: {{{
}}} This can used to attack xss in IE8 or older. Do you sanitize like WikiHtml(#!html)? " defect closed normal WikiExtrasPlugin normal fixed