How to optimal secure posting data in case using java-based web editor?
Thanks to advance
How to optimal secure posting data in case using java-based web editor?
Thanks to advance
Could you explain a bit more about your concern?
i use FCKeditor and write new post "<h1>XXX</h1>"
With
CHtml::encodei have raw text “<h1>XXX</h1>”, but i want “XXX” and remove
CHtml::encodefrom my view. Now I’m open for hack or not? May be need configure security settings in FCKeditor?
You use FCKeditor because you want to allow HTML input.
To prevent XSS attack, you can filter the output with CHtmlFilter.
Thanks. All done.