The following text may result in security issues and is prohibited:
Prohibited HTML tags:
<script>, <object>, <embed>, <link>, <style>, <form>, <input>
Prohibited attributes for allowed elements:
Allowed elements:
a, label, noscript, h1, h2, h3, h4, h5, h6,p, i, b, u, strong, em, small, big, pre, code, cite, samp, sub, sup, strike, s, center, blockquote, hr, br, col, font, map, span, div, img, ul, ol, li, dd, dt, dl, tbody, thead, tfoot, table, td, th, tr, colgroup, fieldset, legend, param, address, area, kbd, ins, del, svg, audio, marquee
Prohibited attributes:
onabort, onafterprint,onbeforeprint, onbeforeunload, onblur, oncanplay, oncanplaythrough, onchange, onclick,oncontextmenu, oncopy, oncuechange, oncut, ondblclick, ondrag, ondragend, ondragenter,ondragleave, ondragover, ondragstart, ondrop, ondurationchange, onemptied, onended,onerror, onfocus, onhashchange, oninput, oninvalid, onkeydown, onkeypress, onkeyup,onload, onloadeddata, onloadedmetadata, onloadstart, onmessage, onmousedown, onmousemove,onmouseout, onmouseover, onmouseup, onmousewheel, onoffline, ononline, onpagehide,onpageshow, onpaste, onpause, onplay, onplaying, onpopstate, onprogress, onratechange,onreset, onresize, onscroll, onsearch, onseeked, onseeking, onselect, onshow,onstalled, onstorage, onsubmit, onsuspend, ontimeupdate, ontoggle, onunload,onvolumechange, onwaiting, onwheel
Prohibited events on any HTML elements:
Allowed events:
alert, prompt, confirm, close, open, blur, clearInterval, clearTimeout, createPopup, focus, moveBy, moveTo, print, resizeBy, resizeTo, scrollBy, scrollTo, setInterval, setTimeout
Prohibited patterns:
Preceded by the ‘=’ character, including any number of spaces between the ‘=’ character and the keyword, for example: xxx = close
Followed by the ‘(‘ and ‘)’ characters, including any number of spaces between the keyword and the ‘(‘ character or any characters in between the ‘(‘ and ‘)’, for example: xxx open (xx)