Can't seem to edit the post with no replies and hindsight says maybe a little clarification is called for:
I need to ensure cleanup of any html (quotes, etc) or possibly process it (accepting any html/special characters/quotes, etc) from the textarea field, so we can avoid the nasty YSOD!
The textarea needs to be secure, but not fail on html inclusion - it may be necessary to strip any html prior to posting?
HTML in textarea = A potentially dangerous Request.Form value YSOD
Hi Team
Umb 4.7.2 + Contour 1.1.12
Wondering if there is a cure to this? Need to ensure cleanup of any html, or at least no YSOD!
Hopefully there is a simple config setting or something?
Thanks
Josh
Can't seem to edit the post with no replies and hindsight says maybe a little clarification is called for:
I need to ensure cleanup of any html (quotes, etc) or possibly process it (accepting any html/special characters/quotes, etc) from the textarea field, so we can avoid the nasty YSOD!
The textarea needs to be secure, but not fail on html inclusion - it may be necessary to strip any html prior to posting?
Any thoughts appreciated, cheers!
So in this case I have ended up simply relying on javascript - using jquery...
May not be the perfect solution but easy and effective at least... modify any to suit your needs- ie: i didn't want actually shaking in this instance.
Hope it can be of use to someone else.
Cheers
Josh
is working on a reply...