Project

General

Profile

Actions
Copy link

Bug #72383

closed

FAL sys_file_reference Description

Added by stefan schreck over 8 years ago. Updated over 8 years ago.

Status:
Rejected
Priority:
Won't have this time
Assignee:
-
Category:
File Abstraction Layer (FAL)
Target version:
6.2.18
Start date:
2015-12-22
Due date:
% Done:

0%

Estimated time:
TYPO3 Version:
6.2
PHP Version:
5.5
Tags:
FAL sys_file_reference
Complexity:
Is Regression:
No
Sprint Focus:

Description

Since typo3 6.2.16 update also present in todays 6.2.17 html Code inside of eg FAL Description field gets displayed as raw html in Frontend

Related issues 1 (0 open1 closed)

Has duplicate TYPO3 Core - Bug #72443: ce image: html tags within image description are rendered improperlyRejected2015-12-26

Actions
Actions
Copy link
 #1

Updated by Andreas Kienast over 8 years ago

  • Status changed from New to Closed

Hi,

this is on purpose as parsing HTML given by an editor is in fact XSS. Please read the security advisories regarding the 6.2.16 release, there are also hints (=TS changes) how to revert the changes.

Actions
Copy link
 #2

Updated by Anja Leichsenring over 8 years ago

  • Status changed from Closed to Rejected
  • Priority changed from Must have to Won't have this time
Actions
Copy link

Also available in: Atom PDF