Check out the LimeSurvey source code on GitHub!

Editor strips the onClick attribute..

More
6 years 2 months ago #54371 by AndYow
Hello,

I recently installed LimeSurvey and have been messing around with it, trying out different options.

While I was adding images to a group's description, I figured thumbnails might work well. I installed highslide.com server-side. It works.

The problem is, LimeSurvey's description editor (FCKeditor) seems to strip the onClick attribute, so when I add the following as a description (using the Source window of the editor):
<br />
Description title here..<br />
<br />
<div class="highslide-gallery">
<ul>
    <li><a href="upload/surveys/12345/image.jpg" class="highslide" title="Caption here.." onclick="return hs.expand(this, config1 )"><img src="upload/surveys/12345/image.thumb.jpg" alt=""/></a></li>
    <li><a href="upload/surveys/12345/image.jpg" class="highslide" title="Caption here.." onclick="return hs.expand(this, config1 )"><img src="upload/surveys/12345/image.thumb.jpg" alt=""/></a></li>
</ul>
<div style="clear:both">&nbsp;</div>
</div>
<br />
and save, this is what happens:
<br />
Description title here..<br />
<br />
<div class="highslide-gallery">
<ul>
    <li><a>click=&quot;return hs.expand(this, config1 )&quot; title=&quot;Caption here..&quot; class=&quot;highslide&quot; href=&quot;upload/surveys/12345/image.jpg&quot; _fcksavedurl=&quot;upload/surveys/12345/image.jpg&quot;&gt;<img src="upload/surveys/12345/image.thumb.jpg" alt="" /></a></li>
    <li><a>click=&quot;return hs.expand(this, config1 )&quot; title=&quot;Caption here..&quot; class=&quot;highslide&quot; href=&quot;upload/surveys/12345/image.jpg&quot; _fcksavedurl=&quot;upload/surveys/12345/image.jpg&quot;&gt;<img src="upload/surveys/12345/image.thumb.jpg" alt="" /></a></li>
</ul>
<div style="clear:both">&nbsp;</div>
</div>
<br />

Is there any way around this?


Thanks!

Please Log in to join the conversation.

More
6 years 2 months ago #54380 by holch
Did you switch off the XSS filter for your installation? I assume that is the problem...

I'm not a LimeSurvey GmbH member. I answer at the LimeSurvey forum in my spare time. No support via private message.
Some helpful links: Manual (EN) | Question Types | Workarounds

Please Log in to join the conversation.

More
6 years 1 month ago #54425 by Mazi
Definitely a XSS filter problem because the elements get stripped.


Best regards/Beste Grüße,
Dr. Marcel Minke
(Limesurvey Head of Support)
Need Help? We offer professional Limesurvey support
Contact: marcel.minke(at)survey-consulting.com'"

Please Log in to join the conversation.

More
6 years 1 month ago #54462 by AndYow
Ah!

I must of missed that in the docs. I'll give it a try.


Thanks!

Please Log in to join the conversation.

More
6 years 1 month ago #54463 by holch

I'm not a LimeSurvey GmbH member. I answer at the LimeSurvey forum in my spare time. No support via private message.
Some helpful links: Manual (EN) | Question Types | Workarounds

Please Log in to join the conversation.

Imprint                   Privacy policy         General Terms & Conditions         Revocation information and revocation form