Goodbye innerHTML, Hello setHTML: Stronger XSS Protection in Firefox 148
AI Summary1 min read
TL;DR
Firefox 148 introduces the standardized Sanitizer API, replacing innerHTML with setHTML for enhanced XSS protection. This advancement helps developers sanitize untrusted HTML, making the web safer.
Tags
Featured ArticleFirefoxFirefox ReleasesWeb DevelopersFirefox 148Sanitizer APIXSS protectionweb securitysetHTML
Cross-site scripting (XSS) remains one of the most prevalent vulnerabilities on the web. The new standardized Sanitizer API provides a straightforward way for web developers to sanitize untrusted HTML before inserting it into the DOM. Firefox 148 is the first browser to ship this standardized security enhancing API, advancing a safer web for everyone. We […]
The post Goodbye innerHTML, Hello setHTML: Stronger XSS Protection in Firefox 148 appeared first on Mozilla Hacks - the Web developer blog.