Opened this issue 4 years ago · 0 comments
\unicode{} also allows for XSS
\unicode{}
$\unicode{<img src=x onerror=alert(1)>}$