Mutation XSS via MathML: how a <style> carrier slipped past an HTML sanitizer
Anatomy of a real mutation-XSS bypass in Jodit: a MathML/style carrier hid an event handler from the sanitizer until a reparse revived it — and the fix.
Articles, tutorials and news about Jodit editor and web development
Anatomy of a real mutation-XSS bypass in Jodit: a MathML/style carrier hid an event handler from the sanitizer until a reparse revived it — and the fix.
Add voice dictation to your editor with one line of Jodit Cloud config — server-side keys, credit metering, zero plumbing.
A deep dive into building an automated demo recording tool that uses Claude AI and Playwright to create polished YouTube-ready videos — with smooth cursor animations, intelligent pause cutting, and zero manual editing.
Watch how AI Assistant PRO plugin with Claude integration creates a complete article about trees in South Africa — entirely hands-free, without a single manual edit.
Learn how useTransition and useActionState replace manual loading state management in React. Real examples with forms, rich text editors, and async-first architecture.
Learn how Jodit PRO's Style plugin lets you define reusable block and text styles — titles, callouts, markers, and more — that your content team can apply with a single click.
Meet Jodit — a zero-dependency WYSIWYG editor with 50M+ npm installs. Learn what powers it, see it in action, and discover what this blog will cover.