phpone

I had a workaround so i’m ok with my issue.

I cannot still give out a full 5 stars rating as it’s just a “prune slugs” and not a “slugs manager”. Plugin title is kinda misleading.

With a “slugs manager” i’m expecting to manage my slugs and see my slugs.

Update rolled out. Thanks. Great job!

Hello @amimulihsanmahdi and thanks for your reply.

Using an HTML block i found a suggestion about using dynamic smartcodes like

{dynamic.INPUT_NAME}

I found out that allows inline code execution as inputs are sanitized only on “submit”.

So when using a dynamic smartcode if you insert a value like

<script>window.alert("injection")</script>

you get the script executed inline.