#3497 closed Bug (fixed)
Editor name not protected from bad chars
| Reported by: | notzippy | Owned by: | Tobiasz Cudnik |
|---|---|---|---|
| Priority: | Normal | Milestone: | CKEditor 3.0 |
| Component: | General | Version: | 3.0 Beta 2 |
| Keywords: | Confirmed Review+ | Cc: |
Description
If editor.name="this.is.my.control" then plugin.js causes a javascript error
In plugin.js the following script is used:
Call the temporary function for the editing boostrap.
'window.parent.CKEDITOR._.contentDomReady' + editor.name + '( window );' +
...
Issue is if editor name contains a "." then script will fail - one way to fix this is :
'window.parent.CKEDITOR._[\'contentDomReady' + editor.name + '\']( window );' +
nz
Attachments (1)
Change History (9)
comment:1 Changed 15 years ago by
| Keywords: | Confirmed added; Escape editor name removed |
|---|
comment:2 Changed 15 years ago by
| Owner: | set to Tobiasz Cudnik |
|---|---|
| Status: | new → assigned |
Changed 15 years ago by
| Attachment: | 3497.patch added |
|---|
comment:3 Changed 15 years ago by
| Keywords: | Review? added |
|---|
comment:4 Changed 15 years ago by
| Keywords: | Review+ added; Review? removed |
|---|
comment:5 Changed 15 years ago by
| Resolution: | → fixed |
|---|---|
| Status: | assigned → closed |
comment:6 Changed 15 years ago by
Hi. I tired to apply the patch to my ckeditor; but still i have the sam problem. I opened the file plugin.js located in ckeditor/plugins/wysiwygarea and i modified it. At beginning it was: window.parent.CKEDITOR._.contentDomReady'+c.name+'( window ); i modified it in this way: window.parent.CKEDITOR._\[\"contentDomReady' +c.name+'\"\]( window ); (i added the \ to avoid more wiki formatting) but i have agian the error. Must i do anything else? Thnks Angelo.
comment:8 Changed 15 years ago by
Ok. I'll wait for the official release....may i know, if possible, when this release is scheduladed? Thanx Angelo.
Fixed with [3489].