🌈 Lascapi ⁂Feb 24
Goodbye #innerHTML, Hello #setHTML: Stronger #XSS Protection in #Firefox 148
#web #security
https://hacks.mozilla.org/2026/02/goodbye-innerhtml-hello-sethtml-stronger-xss-protection-in-firefox-148/
Goodbye innerHTML, Hello setHTML: Stronger XSS Protection in Firefox 148 – Mozilla Hacks - the Web developer blog

Cross-site scripting (XSS) remains one of the most prevalent vulnerabilities on the web. The new standardized Sanitizer API provides a straightforward way for web developers to sanitize untrusted HTML before inserting it into the DOM. Firefox 148 is the first browser to ship this standardized security enhancing API, advancing a safer web for everyone. We expect other browsers to follow soon.

Mozilla Hacks – the Web developer blog
Oto ŠťávaFeb 24

Good news, web people! A standardized XSS protection is coming: https://hacks.mozilla.org/2026/02/goodbye-innerhtml-hello-sethtml-stronger-xss-protection-in-firefox-148/

#web #security #xss #innerhtml #sethtml

Goodbye innerHTML, Hello setHTML: Stronger XSS Protection in Firefox 148 – Mozilla Hacks - the Web developer blog

Cross-site scripting (XSS) remains one of the most prevalent vulnerabilities on the web. The new standardized Sanitizer API provides a straightforward way for web developers to sanitize untrusted HTML before inserting it into the DOM. Firefox 148 is the first browser to ship this standardized security enhancing API, advancing a safer web for everyone. We expect other browsers to follow soon.

Mozilla Hacks – the Web developer blog
N-gated Hacker NewsFeb 24
🔥 In a shocking twist that no one saw coming, #Mozilla has decided to say goodbye to #innerHTML and hello to a 403 #error page! 🚫 Who needs #security improvements when you can just block everyone instead? 😂 #Innovation 🎉
https://hacks.mozilla.org/2026/02/goodbye-innerhtml-hello-sethtml-stronger-xss-protection-in-firefox-148/ #Innovation #WebDevelopment #HackerNews #ngated
Goodbye innerHTML, Hello setHTML: Stronger XSS Protection in Firefox 148 – Mozilla Hacks - the Web developer blog

Cross-site scripting (XSS) remains one of the most prevalent vulnerabilities on the web. The new standardized Sanitizer API provides a straightforward way for web developers to sanitize untrusted HTML before inserting it into the DOM. Firefox 148 is the first browser to ship this standardized security enhancing API, advancing a safer web for everyone. We expect other browsers to follow soon.

Mozilla Hacks – the Web developer blog
pablolarahMay 8, 2024

🔵 New alternatives to innerHTML
by Ollie Williams @hypeddev
#innerHTML #webdev

https://fullystacked.net/innerhtml-alternatives/

New alternatives to innerHTML

getHTML, setHTML, setHTMLUnsafe, declarative shadow DOM and sanitization