diff options
Diffstat (limited to 'docs/ref/templates/language.txt')
| -rw-r--r-- | docs/ref/templates/language.txt | 4 |
1 files changed, 2 insertions, 2 deletions
diff --git a/docs/ref/templates/language.txt b/docs/ref/templates/language.txt index 04b363c0cf..ffddd7435a 100644 --- a/docs/ref/templates/language.txt +++ b/docs/ref/templates/language.txt @@ -471,10 +471,10 @@ That would result in a rendered template like this:: Hello, <b>username -...which, in turn, would result in the remainder of the Web page being bolded! +...which, in turn, would result in the remainder of the web page being bolded! Clearly, user-submitted data shouldn't be trusted blindly and inserted directly -into your Web pages, because a malicious user could use this kind of hole to +into your web pages, because a malicious user could use this kind of hole to do potentially bad things. This type of security exploit is called a `Cross Site Scripting`_ (XSS) attack. |