autenticationLevel()==2){$mode='edit';}else{$mode='auth';}} if(isset($_GET['exit'])){Session::getInstance()->restart();} // check for authentication if(strlen(VIEWCODE ?? '') && !Session::getInstance()->isAuthenticated()){$mode='auth';} // mode definition define('MODE',$mode); // search definition define('SEARCH',(isset($_GET['search'])?htmlspecialchars($_GET['search']):null)); // get localization $TXT=Localization::getInstance(); // initialize application $APP=new WikiDocs(); // initialize document $DOC=new Document(DOC); // initialize markdown parser $PARSER=new ParsedownPlus([ 'tables' => [ 'tablespan' => true, ], 'typographer' => true, 'toc' => true, 'sup' => true, 'sub' => true ]); // NOTE: Parsedown safe mode intentionally NOT enabled — it strips inline HTML // (e.g. spans, simple Mermaid/KaTeX) breaking core // use cases (see issue #293). XSS protection is provided in layers by // Document::sanitizeHtml() (escapes