If someone says link, the typical thing you think of would be a http or https url. However, even something as simple as allowing users to submit an url can be a security issue.
A few weeks ago, I found a vulnerability in the configuration of a website’s markdown library. This allowed users to submit insecure links, such as
This is a copy of what I posted on the TruckersMP forum when I announced I was leaving.
So, I’ve been around here for a while now. I joined the team back in December 2014, as a forum moderator. Since then, I’ve been a game moderator, community manager, vice project manager, and now a developer.
I’ve read a lot of...