[Wikitech-l] Re: New developer feature: $wgUseXssLanguage / x-xss language code

29 Sep 2023


      ...
If the developer setting $wgUseXssLanguage is set to true, then an “x-xss”
language code becomes available and can be selected with *?uselang=x-xss*
in the URL. When using this language code, all messages become “malicious”:
every message is replaced by a snippet of HTML that tries to run alert('
*message-key*').
Clever feature - this will be great for testing. Thank you!
-Yaron
-- 
WikiWorks · MediaWiki Consulting · http://wikiworks.com

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

2005

2004

2003

2002

[Wikitech-l] Re: New developer feature: $wgUseXssLanguage / x-xss language code