Goodbye InnerHTML, Hello SetHTML: Stronger XSS Protection in Firefox 148
todsacerdoti Tuesday, February 24, 2026
Summary
The article discusses the introduction of the 'setHTML' method in Firefox 148, which provides stronger cross-site scripting (XSS) protection compared to the traditional 'innerHTML' approach. This change aims to improve the security of web applications by limiting the potential for XSS vulnerabilities.
132
60
Summary
hacks.mozilla.org