2012-12-03, 10:53 PM
Hello,
I just had a member signing up and purposely trying to manipulate the forum to a certain extent. I was happy to know he admitted not being able to retrieve user details, so well done MyBB for that!
But... he did insert a javascript in one of his profile fields which everytime you visited his profile, it would come up with a popup message.
Anyway of disabling HTML across all profile fields?
I just had a member signing up and purposely trying to manipulate the forum to a certain extent. I was happy to know he admitted not being able to retrieve user details, so well done MyBB for that!
But... he did insert a javascript in one of his profile fields which everytime you visited his profile, it would come up with a popup message.
Anyway of disabling HTML across all profile fields?