Re: problem with rich text editor

Basile Chandesris Mon, 08 Dec 2014 14:41:26 -0800

Le 08/12/14 22:56, nn kk a écrit :

  Hi everyone,
I'm using tynamo rich text area (tapestry-ckeditor-0.0.1.jar) I also use 
tapestry-jquery-3.4.1
I have a js error: document.observe is not a function. It looks like jquery 
breaks prototype, how can I fix this?


---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscr...@tapestry.apache.org
For additional commands, e-mail: users-h...@tapestry.apache.org

     CKEditor 4.4.6 <http://ckeditor.com/release/CKEditor-4.4.6>

Download .zip<http://download.cksource.com/CKEditor/CKEditor/CKEditor%204.4.6/ckeditor_4.4.6_standard.zip>or .gzip<http://download.cksource.com/CKEditor/CKEditor/CKEditor%204.4.6/ckeditor_4.4.6_standard.tar.gz>


*Security Updates:*

 *

   Fixed XSS vulnerability in the HTML parser reported by Maco Cortes
   <https://www.facebook.com/Maaacoooo>.

   Issue summary: It was possible to execute XSS inside CKEditor after
   persuading the victim to: (i) switch CKEditor to source mode, then
   (ii) paste a specially crafted HTML code, prepared by the attacker,
   into the opened CKEditor source area, and (iii) switch back to
   WYSIWYG mode.

*An upgrade is highly recommended!
*

http://ckeditor.com/whatsnew
http://en.wikipedia.org/wiki/CKEditor#Vulnerabilities

https://github.com/tynamo/tapestry-ckeditor/tree/master/src/main/resources/org/tynamo/ckeditor
https://github.com/plannowtech/tapestry5-ckeditor/tree/master/src/main/resources/com/plannow/tapestry5/ckeditor/mixins/ckeditor

Re: problem with rich text editor

Reply via email to