MrSoulPC915 Posted November 8, 2019 Share Posted November 8, 2019 Hello, In order to be able to create really customized CMS pages (tags with exotic attributes for example), I had to disable HTMLPurify. What are the risks of disabling this library? Does it open attack vectors (without identification to the back office)? Any problems within the team will be contained. thank you in advance. Link to comment Share on other sites More sharing options...
lototo Posted November 13, 2019 Share Posted November 13, 2019 Do you have open public forms with HTML field? If not, it is ok Link to comment Share on other sites More sharing options...
MrSoulPC915 Posted November 22, 2019 Author Share Posted November 22, 2019 It confirms my intuition. Thank you. Link to comment Share on other sites More sharing options...
Recommended Posts
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
Register a new accountSign in
Already have an account? Sign in here.
Sign In Now