SOLUTION: Dear Algebra.com developers, I am very proud of you for fixing the CSS injection. I hope that you learned a very valuable lesson. 'Never trust user input' P.S.

Question 1116758: Dear Algebra.com developers,
I am very proud of you for fixing the CSS injection.
I hope that you learned a very valuable lesson.
'Never trust user input'
P.S.
I see that you are still vulnerable to HTML injection.
As an example, I will use the img tag to show an image:

HTML injection is when you input html code, so that when your preprocesser prints it onto the page, HTML interprets it as source code.
To prevent HTML injection, I recommend checking this out.
Sincerely, BumbleStar
Answer by ikleyn(52915) (Show Source): You can put this solution on YOUR website!
you can contact me at ichudov@algebra.com. I cannot disable all HTML input as people sometimes need to use it. Injecting images is a feature and not bug.
RELATED QUESTIONS
Dear sir/madam, I am stucked with the following problems and hope that you could guide (answered by solver91311)

Dear tutor I was wondering on how to find the quotient of my problem but by only using... (answered by jim_thompson5910)

Dear Sir/Mam: I am struggling with Algebra as an older student. Here is my question,... (answered by oberobic)

Dear Sir/Madam, A pleasant day to you! Can you please help me with this problem, I do (answered by solver91311)

Dear Algebra II tutor, I am having trouble solving and checking thje extraneous solution (answered by solver91311)

Hello! I am currently in algebra 1 at my middle school and I am trying to study for... (answered by Earlsdon)

Please Please I need help solving a problem in algebra. The problem is that I am trying... (answered by scott8148)

Dear Edwin McCravy, Hopefully you are very fine. Your previous solution worked very... (answered by Edwin McCravy)

I am homeschooling my son through Pearblossom Private School, Inc. It has been a very... (answered by solver91311)