I duped the problem I have with the anchor tags

Last post 04-03-2006, 5:53 PM by Adam. 1 replies.
Sort Posts: Previous Next
  •  03-29-2006, 10:41 AM 17710

    I duped the problem I have with the anchor tags

     
    Today I realised that the problem I have with the anchor tags is only happening when adding content starting from a template.
    You can dupe it in http://www.cutesoft.net/asp/templates.asp following the steps below:
    1) Optional, delete all the content.
    2) Insert template I uploaded called "Accomodation.htm" which contains a href=#toppage. I'm leaving it there because when the user is adding content and he wants to go to the top of the page easily once the page is created.
    3) Go the html if you want to see how the editor's url is added in front of the #.
    4) Save the sample and press the "Back to the top" link in the page created and you will see the problem.
     
    In your demo is going to the templates dialog page filling all the browser but apparently no damage can be done, maybe any user can delete or/and rename all your templates or insert files in your web server .
     
    In my case (and I think in most of us), only authorised users can add/edit content so if you have the page published with that full URL, any user can modify your html and make a really big mess in your site.
     
    Temporarily, I fixed that replacing by code all the url's added in front of #(to make the # useful) and adding code to make my editor pages secure. I don't like the first solution because I'm not allowing users to add full url's with anchors from other sites but as I said is temporary.
     
    David
     
  •  04-03-2006, 5:53 PM 17834 in reply to 17710

    Re: I duped the problem I have with the anchor tags

    David,
     
    We are investigating this issue and will post a solution in the next minor version release.
     
     

    asp.net Chat http://cutesoft.net/ASP.NET+Chat/default.aspx
    Web Messenger: http://cutesoft.net/Web-Messenger/default.aspx
    asp.net wysiwyg editor: http://cutesoft.net/ASP.NET+WYSIWYG+Editor/default.aspx
    asp wysiwyg html editor: http://cutesoft.net/ASP
    asp.net Image Gallery: http://cutesoft.net/ASP.NET+Image+Gallery/default.aspx
    Live Support: http://cutesoft.net/live-support/default.aspx

View as RSS news feed in XML