Project

General

Profile

Actions

Support #3459

closed

FormElement: sanatize input via htmlentities

Added by Carsten Rose almost 7 years ago. Updated almost 7 years ago.

Status:
Closed
Priority:
Normal
Assignee:
Carsten Rose
Target version:
-
Start date:
29.03.2017
Due date:
% Done:

0%

Estimated time:
Discuss:
Prio Planung:
Vote:

Description

  • New checkbox, per FormElement, to switch on/off 'htmlentities()' before save.
  • Table 'FormElement' new columns 'encodeHtmlEntity' yes/no.
    • On creation of the colunmn , set default to 'no'.
    • Than change the default to 'yes'
  • Adjust FormEditor/FormElementEditor to 'yes' but Note.
  • There different ways to input data (direct keystroke, Unicode number, ...) - ist there a way to unify the input and then to do html_entities() ? Check book PHP-Security.
Actions #1

Updated by Carsten Rose almost 7 years ago

  • Description updated (diff)
Actions #2

Updated by Carsten Rose almost 7 years ago

  • Status changed from New to Closed

implemented

Actions

Also available in: Atom PDF