>I bet there is a <script> tag in there. Neil is right, replacing the offending data fixed the problem. I'd suggest that anyone using inline editors should clean fields of naughty script tags when submitting to a query.
CleanFields.cfm (available from dev exchange) can be customised to do this and cleans out lots of MS nonsense anyway. ----- Original Message ----- From: "Robertson-Ravo, Neil (REC)" <[EMAIL PROTECTED]> To: <[EMAIL PROTECTED]> Sent: Wednesday, October 16, 2002 11:36 AM Subject: RE: [ cf-dev ] SO Odditor / This is not secure in any way > check the code it is pulling from the DB.....I bet there is a <script> tag > in there. > > -----Original Message----- > From: Damian Watson [mailto:[EMAIL PROTECTED]] > Sent: 16 October 2002 11:37 > To: [EMAIL PROTECTED] > Subject: Re: [ cf-dev ] SO Odditor / This is not secure in any way > > > Here ya go: > > <cfoutput query="get_text"> > <cf_soEditor_lite > form="update_text" > field="update_text" > html="#update_text#" > scriptpath="#request.soeditor#" > width="450" > height="300" > singlespaced="false" > wordcount="true" > validateonsave="true" > fontdialog="false" > bold="true" > italic="true" > link="true" > find="true" > hr="false" > image="true" > unlink="false" > align="false" > list="false" > unindent="false" > indent="false" > format="false" > font="false" > size="false" > underline="false" > superscript="false" > subscript="false" > fgcolor="false" > bgcolor="false" > tables="false" > htmledit="true" > borders="false" > details="false"> > </cfoutput> > > ----- Original Message ----- > From: "Dave Phipps" <[EMAIL PROTECTED]> > To: <[EMAIL PROTECTED]> > Sent: Wednesday, October 16, 2002 11:35 AM > Subject: Re: [ cf-dev ] SO Odditor / This is not secure in any way > > > > Can we see some code? I use soeditor all the time and have had no > problems. > > > > Cheers > > > > Dave > > > > At 11:31 10/16/2002 +0100, you wrote: > > >Hi all, > > > > > >I've got a problem an a page where I'm getting an alert on load saying > "this > > >is not secure in any way!" . All there is in the page though is a simple > > >select query and a So Editor Lite tag which is the only thing i could > think > > >would cause this. Just wondering if anyone has come across this before or > > >has any idea what it might be. When clicking OK on the alert, a new > browser > > >window opens up going to macromedia's coldfusion site... > > > > > >d > > > > > > > > > > > >-- > > >** Archive: http://www.mail-archive.com/dev%40lists.cfdeveloper.co.uk/ > > > > > >To unsubscribe, e-mail: [EMAIL PROTECTED] > > >For additional commands, e-mail: [EMAIL PROTECTED] > > >For human help, e-mail: [EMAIL PROTECTED] > > > > > > ============================================ > > Phipps CF Development > > Oxford, Oxfordshire. > > Telephone: +44(0)7718 896696 > > http://www.phipps-cf.co.uk > > ============================================ > > > > > > -- > > ** Archive: http://www.mail-archive.com/dev%40lists.cfdeveloper.co.uk/ > > > > To unsubscribe, e-mail: [EMAIL PROTECTED] > > For additional commands, e-mail: [EMAIL PROTECTED] > > For human help, e-mail: [EMAIL PROTECTED] > > > > > > > > -- > ** Archive: http://www.mail-archive.com/dev%40lists.cfdeveloper.co.uk/ > > To unsubscribe, e-mail: [EMAIL PROTECTED] > For additional commands, e-mail: [EMAIL PROTECTED] > For human help, e-mail: [EMAIL PROTECTED] > > -- > ** Archive: http://www.mail-archive.com/dev%40lists.cfdeveloper.co.uk/ > > To unsubscribe, e-mail: [EMAIL PROTECTED] > For additional commands, e-mail: [EMAIL PROTECTED] > For human help, e-mail: [EMAIL PROTECTED] > > -- ** Archive: http://www.mail-archive.com/dev%40lists.cfdeveloper.co.uk/ To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] For human help, e-mail: [EMAIL PROTECTED]
