Preview strange behavior, bug?

Post

Posted
Rating:
#274 (In Topic #62)
Crsnic
Avatar
Standard member
Crsnic is in the usergroup ‘Fan in action’

Composr website

Hey There

I just came across I think forum bug.

I just wrote replay in other topic and when I hit preview of the post It did 2 things, showed the preview blow and replaced letter O in quite few places like this: Screenshot by Lightshot . Seems like it replace O when it is first letter in the word in the middle of the sentence. Tho it is not much annoying as when I hit post replay it post as it should be. What is strange it does not happen everythime, rather random occurance.

Greg
Lost in madness.
Online now: No Back to the top

Post

Posted
Rating:
#275
Chris Graham
Avatar
Site director
Chris Graham is in the usergroup ‘Administrators’
It's a security feature.

As an additional level of XSS protection, Comcode contexts have "on" replaced like that just in case there was a bug down-stream that allowed a JavaScript event handler to slip through. The HTML entity makes it almost impossible that JavaScript could be parsed from it.

It's done based on privileges.

Become a fan of Composr on Facebook or add me as a friend. Add me on on Mastodon. Follow me on Minds (where I am most active). Support me on Patreon

Was I helpful?
  • If not, please let us know how we can do better (please try and propose any bigger ideas in such a way that they are fundable and scalable).
  • If so, please let others know about Composr whenever you see the opportunity or support me on Patreon.
  • If my reply is too Vulcan or expressed too much in business-strategy terms, and not particularly personal, I apologise. As a company & project maintainer, time is very limited to me, so usually when I write a reply I try and make it generic advice to all readers. I'm also naturally a joined-up thinker, so I always express my thoughts in combined business and technical terms. I recognise not everyone likes that, don't let my Vulcan-thinking stop you enjoying Composr on fun personal projects.
  • If my response can inspire a community tutorial, that's a great way of giving back to the project as a user.
Online now: No Back to the top

Post

Posted
Rating:
#276
Crsnic
Avatar
Standard member
Crsnic is in the usergroup ‘Fan in action’
Ok so it is not a bug :) just looked like one for me so I thought I will report it.
Lost in madness.
Online now: No Back to the top

Post

Posted
Rating:
#281
Chris Graham
Avatar
Site director
Chris Graham is in the usergroup ‘Administrators’
We'll do a change - the text box input will have the HTML entity mapped back to the o/O characters so you can't see anything happening after previewing for a text box input (like with the Quick Reply).

Become a fan of Composr on Facebook or add me as a friend. Add me on on Mastodon. Follow me on Minds (where I am most active). Support me on Patreon

Was I helpful?
  • If not, please let us know how we can do better (please try and propose any bigger ideas in such a way that they are fundable and scalable).
  • If so, please let others know about Composr whenever you see the opportunity or support me on Patreon.
  • If my reply is too Vulcan or expressed too much in business-strategy terms, and not particularly personal, I apologise. As a company & project maintainer, time is very limited to me, so usually when I write a reply I try and make it generic advice to all readers. I'm also naturally a joined-up thinker, so I always express my thoughts in combined business and technical terms. I recognise not everyone likes that, don't let my Vulcan-thinking stop you enjoying Composr on fun personal projects.
  • If my response can inspire a community tutorial, that's a great way of giving back to the project as a user.
Online now: No Back to the top
1 guest and 0 members have just viewed this.

Statistics

Forum statistics:
  • 2,052 topics, 7,195 posts, 10,830 members
  • Our newest member is Customcollective
Back to Top