Hi,
I am using CKEDITOR within Oracle Application Express. I am currently trying to find information about the editor and its ability to prevent cross site-scripting. I have reviewed the code can come across CKE_PROTECTED is there any information available about its function. Furthermore, will this be enough to stop any malicious Javascript being executed?
Thanks,
JIM
A few people experienced
A few people experienced problems with it in the past. Some solutions have been proposed. You should check the dev site for possible solutions to your problem: http://dev.ckeditor.com/search?q=CKE_PROTECTED+
Customer and Community Manager, CKSource
Follow us on: Facebook, Twitter, LinkedIn
If you think you found a bug in CKEditor, read this!
What does cke_protected do?
Hi Sebstefanov,
I have looked over the issues that people have previously experienced. However, the issues do not explain what CKE_PROTECTED actually does. As per my previous post, I am trying to find out what CKE_PROTECTED does as a function as well as if Cross site-scripting within the CKEditor is protected.
Thanks,
JIM
cke_protected problems
Hi, I'm having a similar problem. I asked about it in an ACF thread, but now I'm thinking it may be unrelated:
I get a commented out tag with cke_protected in my rich text editor when I try to use an <i> tag or <b>, and when I use the <code> tag, the tag gets commented out along with whatever content it's wrapping. How do I disable this?