Board Thread:Code Review/@comment-168424-20151003020735/@comment-24473195-20151003075450

Well, you can port it over here, but it does seem to have a security risk. So chances are that it would get disabled at a future date.

The problem is that when it imports and loads the page it simply copies the html code and puts it on a page as is. While under  normal conditions that wouldn't be a problem, someone can easily inject malicious code that way.

Another problem with that script, and many scripts for that matter is that it loads on every page regardless of whether it has those tags or not. In fact the author wrote it as a comment on the script itself: "//FIXME: this is absurdly expensive atm for all the pages not used on"

This wastes bandwidth, and increases the security risk to all pages. Wowwiki is currently vulnerable to those exploits right now.