Oh no! Where's the JavaScript?
Your Web browser does not have JavaScript enabled or does not support JavaScript. Please enable JavaScript on your Web browser to properly view this Web site, or upgrade to a Web browser that does support JavaScript.
Not a member yet? Click here to register.
Forgot Password?
  1. Home
  2. Discussion Forum
  3. PHPFusion 8 Support
  4. System Administration - 8
  5. Function descript!

Function descript!

Asked Modified Viewed 5,154 times
Back to Forum Index Previous Topic Next Topic
Print
F
Falcon
F
Falcon 10
  • Member, joined since
  • Contributed 128 posts on the community forums.
  • Started 5 threads in the forums
  • Started this discussions
asked
Member

Hello, i hope that this is the corect category. xD

So, some time a go i was trying to make a Spoiler BBCode, i found lots of html codes from, phpbb, mybb, smf and vbuletin, i know that everytime i was doing that bbcode right, but never worked, so today i finally found out, why isn't working, seems like there is a function in maincore.php that wont let me use onclick='' in a bbcode_include.php file.

When i deleted onclick from this line:
Code Download source
$text = preg_replace('#(<[^>]+[/\"\'\s])(onmouseover|onmousedown|onmouseup|onmouseout|onmousemove|onclick|ondblclick|onfocus|onload|xmlns)[^>]*>#iU', ">", $text);


My spoiler BBCode was working like it should be.

I want to know if it's possible onether way, then deleting onclick from that line, i'm sure there must be something.

Thank you for your time.
0 replies

3 posts

J
Jeepers1993
J
  • Junior Member, joined since
  • Contributed 45 posts on the community forums.
  • Started 2 threads in the forums
answered
Junior Member

The reason for this is so a user couldn't simply put, for instance: onload="window.location='myownsite.com'". I think its pretty harmless if you remove the onclick, since this isn't triggered automatically.
0 replies
K
kneekoo
K
  • Senior Member, joined since
  • Contributed 289 posts on the community forums.
  • Started 12 threads in the forums
  • Answered 1 question
answered
Senior Member

subzero, he knows what onlick is useful for. His only concern was the security implication of removing onclick from the descrypt core function so he can use his bbcode without hurting the core's safety.
0 replies
C
Craig
C
Craig 14
  • Fusioneer, joined since
  • Contributed 4,462 posts on the community forums.
  • Started 212 threads in the forums
answered
Fusioneer

Quote

subzero wrote:
More Information regarding OnCLick
http://www.w3schools.com/jsref/event_...nclick.asp
maybe that'll steer ya the right way somwhat..?


I was positive you were banned.
0 replies

Category Forum

System Administration - 8

Labels

None yet

Statistics

  • Views 0 views
  • Posts 3 posts
  • Votes 0 votes
  • Topic users 4 members

4 participants

C
C
Craig 14
  • Fusioneer, joined since
  • Contributed 4,462 posts on the community forums.
  • Started 212 threads in the forums
K
K
  • Senior Member, joined since
  • Contributed 289 posts on the community forums.
  • Started 12 threads in the forums
  • Answered 1 question
J
J
  • Junior Member, joined since
  • Contributed 45 posts on the community forums.
  • Started 2 threads in the forums
F
F
Falcon 10
  • Member, joined since
  • Contributed 128 posts on the community forums.
  • Started 5 threads in the forums
  • Started this discussions

Notifications

Track thread

You are not receiving notifications from this thread.

Related Questions

Not yet