Opened 12 years ago

Closed 10 years ago

#8674 closed Bug (fixed)

"data-cke-saved-src" is inserted and corrupt the source

Reported by: usami Owned by:
Priority: Normal Milestone:
Component: Core : Parser Version: 3.0
Keywords: Cc:


  1. At the Demo site, put image and enter following text to Alternative Text in Image Properties.
     >"'><img src="javascript:alert('Test')">
  1. Go to source mode and switch back to wysiwyg mode.
  2. Open Image Properties and see the Alternative Text. It became like following.
    >"'><img  data-cke-saved-src="javascript:alert( src="javascript:alert('Test')">

This issue is similar to this ticket (, but still causing on CKEditor 3.6.2. and Demo site.

Change History (2)

comment:1 Changed 12 years ago by Jakub Ś

Component: GeneralCore : Parser
Status: newconfirmed
Version: 3.0

The above TC can be reproduced from CKEditor 3.0 but a single change (text doesn’t grow rapidly when switching modes) from

 >"'><img src="javascript:alert('Test')">


>"'><img  data-cke-saved-src="javascript:alert( src="javascript:alert('Test')">

can be observed from CKEditor 3.4.1

comment:2 Changed 10 years ago by Piotrek Koszuliński

Resolution: fixed
Status: confirmedclosed

I cannot reproduce this any more.

Note: See TracTickets for help on using tickets.
© 2003 – 2022, CKSource sp. z o.o. sp.k. All rights reserved. | Terms of use | Privacy policy