Open madebyannalam opened 1 year ago
I cant reproduce this anymore on https://main-enterprise.demo.design.infor.com/components/editor/example-index.html
When i paste <img src=x onerror=alert(document.domain)>
if thats correct.
Try updating to the latest as i suspect it is fixed by https://github.com/infor-design/enterprise/issues/6892
This issue has been automatically marked as stale because it has not had recent activity. It will be closed if no further activity occurs. Thank you for your contribution.
Describe the bug When content containing executable javascript is pasted into a rich text field, that javascript will be executed. Doesn't happen when the same value is typed.
To Reproduce Steps to reproduce the behavior:
In a rich text field that will allow copy and paste, paste in the following code:
An alert should pop up
Expected behavior The pasted content should be treated in the same manner as when it's being typed out.
Version
Screenshots
Platform
Additional context N/A