| ||||||||||
Shopping cart software Solutions for online shops and malls | ||||||||||
|
X-Cart Home | FAQ | Forum rules | Calendar | User manuals | Login |
TinyMCE stripping <script> and <iframe> tags in 5.2.4 | ||||
|
|
Thread Tools | Search this Thread |
#1
|
|||||||
|
|||||||
TinyMCE stripping <script> and <iframe> tags in 5.2.4
How can I fix this? Previously saved category descriptions (that were working fine) now break if I try to edit them. Upon inspection, all <iframe> and <script> tags are removed when I hit Save on the wysiwyg editor.
__________________
X-cart v 5.2 |
|||||||
#2
|
|||||||||
|
|||||||||
Re: TinyMCE stripping <script> and <iframe> tags in 5.2.4
I don't think this is caused by tiny MCE, it is the htmlpurifier lib. I'm not sure if this is recommended but I changed this for a client by decorating the isParamTrusted() method of the View\RequestHandler\ARequestHandler class.
__________________
Mike White - Now Accepting new clients and projects! Work with the best, get a US based development team for just $125 an hour. Call 1-502-773-6454, email mike at babymonkeystudios.com, or skype b8bym0nkey XcartGuru X-cart Tutorials | X-cart 5 Tutorials Check out the responsive template for X-cart. |
|||||||||
#3
|
|||||||
|
|||||||
Re: TinyMCE stripping <script> and <iframe> tags in 5.2.4
Is this some new bug? It's so bad that I can't even embed a video using the video button on the wysiwyg editor and pasting in the embed code. It strips out the iframe every time.
It worked fine in 5.2.2. EDIT: Is it perhaps this change? 2015-04-12 - [Bug] HTMLPurifier library is added to prevent potential dangerous content in input variables. #BUG-629 (Vladimir Semyonov)
__________________
X-cart v 5.2 |
|||||||
#4
|
|||||||
|
|||||||
Re: TinyMCE stripping <script> and <iframe> tags in 5.2.4
Has anyone resolved this? I came here looking for a way to remove this htmpurifier lib completely. It is destroying formatting of description fields that once worked perfectly fine, and preventing me from properly laying out my site. I was able to modify it to accept all <iframe> tags by flagging them as safe, but that was a less desirable workaround than adding the HTML5 video features that I was trying to implement. htmlpurifer is checking against HTML 4, from what I can tell. Even for things that should just work, it is getting in the way: removing id's, removing <div>'s, removing <spans>, and the list goes on. I just want it gone!
__________________
--- |
|||||||
#5
|
|||||||
|
|||||||
Re: TinyMCE stripping <script> and <iframe> tags in 5.2.4
I had filed a bug on the 12th, but not yet heard a response. It was confirmed, though.
https://bt.x-cart.com/view.php?id=44680
__________________
--- |
|||||||
#6
|
|||||||||
|
|||||||||
Re: TinyMCE stripping <script> and <iframe> tags in 5.2.4
Quote:
This is going to be fixed in the next 5.2.5 version.
__________________
Alex Solovev, Qualiteam --- User manual Video tutorials X-Cart FAQ You are welcome to press "Thanks" button if you find this post useful Click here to learn how to apply patches X-Cart Extensions |
|||||||||
#7
|
|||||||||
|
|||||||||
Re: TinyMCE stripping <script> and <iframe> tags in 5.2.4
JFYI 5.2.5 is coming out next week.
__________________
Found a bug in X-Cart? Post it to our bug tracker! Know how to make X-Cart better? Suggest an idea! |
|||||||||
#8
|
|||||||
|
|||||||
Re: TinyMCE stripping <script> and <iframe> tags in 5.2.4
5.2.5 seems to have fixed everything, including the Multilevel Primary Menu module (which was completely nonfunctional in 5.2.4).
Testing on my site, divs (including IDs), scripts, and iframe tags are all working in Category Descriptions and Pages.
__________________
X-cart v 5.2 |
|||||||
|
#9
|
|||||||||
|
|||||||||
Re: TinyMCE stripping <script> and <iframe> tags in 5.2.4
I have an issue this modules just appears with a blank space where the description should be, i have to disable it to see the text, it has been like that for me for several versions
__________________
Richard Ultimate 5.4 testing |
|||||||||
#10
|
|||||||||
|
|||||||||
Re: TinyMCE stripping <script> and <iframe> tags in 5.2.4
Quote:
Are there any JavaScript errors in the browser console? Anyway, this is kind of a rare issue, so I would advise to file support ticket to have our engineers investigate it right in your store. Also, please let me know the ID of the ticket so that I could speed it up.
__________________
Best regards, Igor Pudovkin X-Cart hosting team |
|||||||||
|
|||
X-Cart forums © 2001-2020
|