html - Is escaping image url ok? -
i've been (not so) accidentally escaping image url's while now, , have never seen issues in browsers.
eg, changing this:
<img src="http://example.com/image.jpg" /> into this:
<img src="http://example.com/image.jpg" /> but have been wondering if there issues this. i've left in place far due xss concerns around image url's come from, regex validity check them , not escape them too..
it create pages bigger curently..
has experienced issues escaping image urls..?
the "escaping" you're doing there purely on level of xml/html, , time document has been read , understood xml/html parser escaping gone -- long before "url-ness" comes play.
so, no, there shouldn't issues that, not many benefits either :)
html image xss
No comments:
Post a Comment