I'd like to use Ckeditor for an internal messaging system on a website.
I'd like that users can format text but I'm aware of vulnerabilities, is there any way to make a compromise ?
I've heard of a BBcode plugin, or ways to sanitize data entered from another topic (CKEditor security best practices), how would it work ?