Test1

However, as others note, if you are not the source for any part of the text string, using innerHTML can subject you to content injection attacks like XSS if you’re not careful to properly sanitize the text first.

If you are using input from the user, here is one way to do it securely while also maintaining cross-browser compatibility:

Submit a Comment

Your email address will not be published. Required fields are marked *