This is a migrated thread and some comments may be shown as answers.

RadEditor Vulnerability

1 Answer 120 Views
Editor
This is a migrated thread and some comments may be shown as answers.
Squall
Top achievements
Rank 1
Squall asked on 04 Dec 2013, 07:44 AM
I can insert everythings here using Chrome Developer Tool.

1 Answer, 1 is accepted

Sort by
0
Slav
Telerik team
answered on 06 Dec 2013, 05:23 PM
Hi Squall,

The RadEditor control does not restrict the inserted content in any way and it is up to the developers to ensure that insecure content will not be submitted via the control by adding validation.

It appears that you have used the dev toolbar of chrome to insert the embedded video. Is there a particular scenario with entering insecure content in the form for posting in the forum that you have located, and if there is, could you please provide more information about it?

Regards,
Slav
Telerik
If you want to get updates on new releases, tips and tricks and sneak peeks at our product labs directly from the developers working on the RadControls for ASP.NET AJAX, subscribe to the blog feed now.
Tags
Editor
Asked by
Squall
Top achievements
Rank 1
Answers by
Slav
Telerik team
Share this question
or