Extension talk:AllowAnchorTags

Aren't there potential XSS vulnerabilities opened by this extension? Jean-Lou Dupont 21:53, 9 April 2007 (UTC)
 * indeed - a) be failing to escape user input, and b) by design through javascript: urls. -- Duesentrieb ⇌ 23:06, 9 April 2007 (UTC)