When using any feature that has the word dangerous in it, treat it seriously…
Six Security Vulnerabilities learned from a Year of HackerOne
Kevin Miller
2154

Fun fact: dangerouslySetInnerHtml was almost going to be called insertXssVulnerabilityHere.

I wonder this vulnerability would still have happened if the name was so blatant.

reply