Bug Report
Current Behavior
Currently a customer can insert HTML like <a href="any adress">Link</a> into the comment textarea.
This link will be rendered inside the backend module.
Expected behavior/output
I would expect all html entities to be removed from the comment. I think there´s no use case a customer needs to add html.
Environment
- TYPO3 version(s): 13.4
- cart version: 11.7.2
- Is your TYPO3 installation set up with Composer (Composer Mode): yes
Bug Report
Current Behavior
Currently a customer can insert HTML like
<a href="any adress">Link</a>into the comment textarea.This link will be rendered inside the backend module.
Expected behavior/output
I would expect all html entities to be removed from the comment. I think there´s no use case a customer needs to add html.
Environment