Developer forum

Forum » CMS - Standard features » Semi-colon dropped

Semi-colon dropped

E-mail notifications
Nuno Aguiar Dynamicweb Employee
Nuno Aguiar
Reply
Posted on 22/08/2017 17:51:08

Hi,

 

A customer was trying to add html encoded string into a page name (as an item) and reported the semi-colon get's dropped on editing (check attachments).

 

Although I pointed them into using unicode characters, is this a bug or by design to avoid XSS or SQL Injections when processing the value?

 

Using 8.9.1.13

 

Best Regards,

Nuno Aguiar

1.png 2.png

Replies

 
Oleg Rodionov Dynamicweb Employee
Oleg Rodionov
Posted on 25/08/2017 01:36:25
Reply
This post has been marked as an answer

Hi Nuno,

Yes, the issue is reproduced on last 892 as well, I see the simbol is dropped during content (page/paragraph) creating but it is storred OK on the content editing and saving again. The issue is not reproduced on 92. So, I've created TFS 37946 to fix 892 will be provided with a further hotfix.

Thanks.

BR, Oleg QA

 

Votes for this answer: 1
 
Nuno Aguiar Dynamicweb Employee
Nuno Aguiar
Posted on 25/08/2017 10:20:09
Reply

Hi Oleg,

 

Thank you for the confirmation.

 

Best Regards,

Nuno Aguiar

 
Kristian Kirkholt Dynamicweb Employee
Kristian Kirkholt
Posted on 21/09/2017 10:10:05
Reply

Hi Nuno

The problem TFS#37946 "Semi-colon dropped" has now been fixed in version 8.9.2.8

You are able to find this build in the download section:

http://doc.dynamicweb.com/releases-and-downloads/releases

Please contact Dynamicweb Support if you need any additional help regarding this.

Kind Regards
Dynamicweb Support
Kristian Kirkholt

 
Nuno Aguiar Dynamicweb Employee
Nuno Aguiar
Posted on 25/09/2017 16:53:45
Reply

Thanks a lot Kirstian,

 

See you in a couple of days :)

 

You must be logged in to post in the forum