View Issue Details
| ID | Project | Category | View Status | Date Submitted | Last Update |
|---|---|---|---|---|---|
| 0005553 | Composr non-bundled addons | [All Projects] General / Uncategorised | public | 2024-01-15 17:02 | 2024-08-01 21:34 |
| Reporter | Patrick Schmalstig | Assigned To | Patrick Schmalstig | ||
| Severity | Major-bug | ||||
| Status | assigned | Resolution | open | ||
| Summary | 0005553: Activity Feed: Setting the title of a forum topic to a URL causes activity feed link to take people to that URL | ||||
| Description | Setting the title of a forum topic to a URL causes activity feed link to take people to that URL. This is a huge flaw and allows spammers to further perpetuate spam. | ||||
| Tags | Roadmap: v11, Type: Spam | ||||
| Time estimation (hours) | |||||
| Sponsorship open | |||||
|
|
It's more trouble fixing than is worth for v10; Activity Feed uses comcode_to_tempcode which is causing link-like text to become actual links. But it needs to use this function. There aren't any good ways to stop this function from doing that which won't disrupt the activity render. Adding to the roadmap for v11 instead, although I may bump it further to v11.1 or v12. |
|
|
Maybe {$STRIP_TAGS,...} inside the template. |
| Date Modified | Username | Field | Change |
|---|---|---|---|
| 2024-01-15 17:02 | Patrick Schmalstig | New Issue | |
| 2024-01-15 17:02 | Patrick Schmalstig | Status | non-assigned => assigned |
| 2024-01-15 17:02 | Patrick Schmalstig | Assigned To | => Patrick Schmalstig |
| 2024-01-24 00:14 | Patrick Schmalstig | Note Added: 0008233 | |
| 2024-01-24 00:14 | Patrick Schmalstig | Tag Attached: Roadmap: v11 | |
| 2024-01-24 00:15 | Patrick Schmalstig | Note Edited: 0008233 | View Revisions |
| 2024-08-01 21:20 | Chris Graham | Note Added: 0009054 | |
| 2024-08-01 21:34 | Patrick Schmalstig | Tag Attached: Type: Spam |
