Bug #72383

FAL sys_file_reference Description

Added by stefan schreck over 4 years ago. Updated over 4 years ago.

Status:
Rejected
Priority:
Won't have this time
Assignee:
-
Category:
File Abstraction Layer (FAL)
Target version:
Start date:
2015-12-22
Due date:
% Done:

0%

TYPO3 Version:
6.2
PHP Version:
5.5
Tags:
FAL sys_file_reference
Complexity:
Is Regression:
No
Sprint Focus:

Description

Since typo3 6.2.16 update also present in todays 6.2.17 html Code inside of eg FAL Description field gets displayed as raw html in Frontend


Related issues

Duplicated by TYPO3 Core - Bug #72443: ce image: html tags within image description are rendered improperly Rejected 2015-12-26

History

#1 Updated by Andreas Fernandez over 4 years ago

  • Status changed from New to Closed

Hi,

this is on purpose as parsing HTML given by an editor is in fact XSS. Please read the security advisories regarding the 6.2.16 release, there are also hints (=TS changes) how to revert the changes.

#2 Updated by Anja Leichsenring over 4 years ago

  • Status changed from Closed to Rejected
  • Priority changed from Must have to Won't have this time

Also available in: Atom PDF