Combobox XSS vulnerability


#1

Combobox has XSS vulnerability by default.
Sample is there; https://snippet.dhtmlx.com/92naz1su

Is a fix planned? Another components are safe from XSS until HTML is enable, so combobox is opposite.


#2

Thank you for your report. The problem is confirmed. We’ll try to fix it in future updates.