Yikes! It only works in the preview. I'm going to make this as a Wiki.
I remember doing something similar. I'll try to link BOTH of the posts I made about HTML on the Forums here.
Coding in Replies (Not really HTML, but worth a mention): Coding in replies
Making Custom Text in the Forums: How to make custom icons/commands in comments and posts
doesnt even work in preview
did you even test this?
Im pretty sure the
<form> is an html tag, not XSS, as its not injecting anything.
Here on the forums, you can do a lot with html, such as
Heading one tag
and i think you can do css too
xss means adding interactive content on other ppl's website
also known as injecting scripts into the website source code, but with this we're not injecting anything
From OWASP: "Cross-Site Scripting (XSS) attacks are a type of injection, in which malicious scripts are injected into otherwise benign and trusted websites."
form>s aren't malicious (in the way @mr_owlssssnap2) is using them, in this case, I wouldn't describe the tags as being part of an XSS attack.
and also im not injecting anything into the code
Anybody (in the U.S.) under the age of 18 is a minor.