Opened 15 years ago

Closed 12 years ago

#3337 closed Task (fixed)

Protect the content before it is loaded

Reported by: Artur Formella Owned by:
Priority: Normal Milestone:
Component: General Version:
Keywords: Cc:


-Insert in the Source mode:

<a href=""><img src="" height=100 /><img height=100 src=""  /><img src="" height=100 /></a>

<img height="18" src="" height=100 onclick="alert('test')" />


-Click on the any picture before it is loaded.

Result: will be loaded in the editor's iframe.

Expected result: nothing happens.

If you can't reproduce try to turn off browser cache and slow down the Internet.

Change History (3)

comment:1 Changed 15 years ago by Artur Formella

Keywords: Confirmed added

The following code is now safe:

<img height="18" src="" height=100 onclick="alert('test')" />

but still there is a problem with:

<a href=""><img src="" height=100 /><img height=100 src=""  />
<img src="" height=100 /></a>

comment:2 Changed 14 years ago by Frederico Caldeira Knabben

Milestone: CKEditor 3.x

Milestone CKEditor 3.x deleted

comment:3 Changed 12 years ago by Jakub Ś

Resolution: fixed
Status: confirmedclosed

It seems that this issue has expired on trunk.

Note: See TracTickets for help on using tickets.
© 2003 – 2022, CKSource sp. z o.o. sp.k. All rights reserved. | Terms of use | Privacy policy