How do I bypass a regex filter that filters all html to avoid xss? I’ve tried using things like
<img src="aa" onerror="alert(1)"> but still no luck. This is for a CTF challenge btw.
The regex is:
<(sS)*> and the validator is running on a TypeScript server