-
Type:
Problem report
-
Resolution: Fixed
-
Priority:
Trivial
-
Affects Version/s: 6.0.10, 6.2.4, 6.4.0beta3, 6.4.0beta4, 6.4 (plan)
-
Component/s: Frontend (F)
-
None
-
Sprint 94 (Nov 2022), Sprint 95 (Dec 2022), Sprint 96 (Jan 2023), Sprint 97 (Feb 2023), Sprint 98 (Mar 2023)
-
0.25
The users must be warned about the HTML type of the Attribution field, since it is possible to store malicious JavaScript code in there.
- The field should be renamed: Attribution => Attribution HTML.
- The icon should be replaced with a Warning icon, additionally requiring the user to make sure the HTML code comes from a trusted source and does not contain malicious scripts.
Example: Make sure the code comes from a trusted source and does not contain malicious scripts.
