I want to build smth with your API,
Feel free to PM me if you need help with that. I already changed a few things on some of my API endpoints and will change a few others soon.
do you escape HTML in the posts provided by it?
Yes. Here is how your post was saved:
https://api.ninjastic.space/posts/55349523The forum also blocks most of them through Cloudflare.
I'm afraid to trigger some sort of forum's automatic response if I'll just paste a ton of XSS payloads here.
I don't think you would get banned because of that, so no worries. You just get a Cloudflare error page and they block you from making the post.
Try writing this and clicking "Preview":
j4vascript:alert(1)
(replacing the 4 with an 'a')
Result:
Sorry, you have been blocked
You are unable to access bitcointalk.org
Scary message, but you can just go back and keep using the forum normally.