[development] WYSIWYG editors
Karoly Negyesi
karoly at negyesi.net
Mon Mar 12 22:47:11 UTC 2007
Hi,
I would like to put a note on fckeditor and tinymce (and offspring) and
any other WYSIWYG project pages minus WYMeditor:
If you use this module, then please do not ask for support on any other
module or core and please note that you might or might not face security
problems.
Reason:
http://drupal.org/node/84797
http://drupal.org/node/121276
Regarding the latter, Greg agreed with me regarding the note above.
Regarding security, those who use such a module, might be inclined to
relax the tight security of filtered HTML to allow fancy features of the
editor and there it goes. Indeed what you see is what you get even if it's
XSS.
Regards,
NK
More information about the development
mailing list