Bidirectional characters in LTR languages post security fix

sam · November 22, 2021, 10:42pm

Demo:

#include <stdio.h>

int main() {
    /* Say hello; newline<U+2067> /*/ return 0 ;
    printf("Hello world.\n");
    return 0;
}

#include 

int main() {
    /* Say hello; newline<U+2067> /*/ return 0 ;
    printf("Hello world.\n");
    return 0;
}

Test: ‫"שלום חבר" - Hello Friend

Without BIDI

Test: “שלום חבר” - Hello Friend

Markdown:

Test: &#x202B;"שלום חבר" - Hello Friend

Without BIDI

Test: "שלום חבר" - Hello Friend

Not the best example in the world, but you should get the gist here, only impacts source code being posted on the forum. Bidi chars in source code is not something that is usually done.

Topic		Replies	Views
Email not working on my Discourse site Support	11	88	May 13, 2025
Wrong sending domain used Installation	12	3414	June 8, 2024
Permissions for uploads folder? Installation	16	149	August 12, 2024
My install is 16,359 commits behind! Advice? Installation	15	172	April 17, 2025
Rebuild fails because still on `master` branch. Fix with `git checkout main` Support	3	362	February 15, 2022

Bidirectional characters in LTR languages post security fix

Related topics