How tosecurely append items securely with Jquery
Hi;
What's the right way of doing this without breaking the page and dealing with XSS?
This is the sample of code that I append:
Thanks
What's the right way of doing this without breaking the page and dealing with XSS?
- var str = $('#embed_text_input').val();
- if (str.toLowerCase().indexOf("apple") >= 0)
- {
- var embed_button_title = "Apple";
- var icon_value = "fa-apple";
- var found = true;
- }
- var append_item = "<div id = \"full_embed_button_"+embed_button_id+"\" class=\"input-group\"><span class=\"input-group-addon\"><span class=\"fa "+icon_value+" \"></span></span><input class=\"form-control btn btn-default\" data-toggle=\"button\" value=\""+embed_button_title+"\" type=\"button\" onclick = \"edit_embed("+embed_button_id+",'"+str+"')\"><span class=\"input-group-btn\" onclick = \"remove_embed('"+embed_button_id+"');\"><button class=\"btn btn-default clear remove-button\" type=\"button\" tabindex=\"99\"><span class=\"glyphicon glyphicon-remove\"></span></button></span></div>";
- var $input = $(append_item);
- $input.appendTo($("#embed_buttons_box"));
This is the sample of code that I append:
- <iframe src="//playlists.applemusic.com/embed/pl.dsdfsdfsdfsd?country=us&app=music" height="500px" width="100%" frameborder="0"></iframe>
Thanks
Topic Participants
pmdg3
jtara-jquery
jakecigar