oktw => #ysitd: <petjelinux>: This time not only because it is useful to shorten the attack vector but also due to its XML-ish nature. This means that once we use entities inside an SVG's <script> element (or any other CDATA element), they will be parsed as if they were used in canonical representation. #56515c339bd6779f382ed3f9

oktw says to #ysitd

<petjelinux>: This time not only because it is useful to shorten the attack vector but also due to its XML-ish nature. This means that once we use entities inside an SVG's <script> element (or any other CDATA element), they will be parsed as if they were used in canonical representation.

at Sun, Nov 22, 2015 2:09 PM