WordPress.org

Ready to get started?Download WordPress

Forums

WP-Sentinel
[resolved] HTML "pre" tag triggers code injection false positive when previewin (2 posts)

  1. congma
    Member
    Posted 3 years ago #

    When I preview a new post that contains the "pre" tag, WP-Sentinel is triggered and blocks the previewing page and warns of HTML code injection attack. The message given in WP-Sentinel's alarm report is:

    - Variable content of the POST method triggered the filter 'script or html injection' for the content '<pre>test</pre>'.

    I'm not sure why this normal activity of previewing is blocked by the plugin. Sounds like a bug to me.

    http://wordpress.org/extend/plugins/wp-sentinel/

  2. evilsocket
    Member
    Plugin Author

    Posted 3 years ago #

    Admin panel -> wp-sentinel -> settings -> allowed html tags (add the pre tag)

    :)

Topic Closed

This topic has been closed to new replies.

About this Plugin

About this Topic