20069: Some attribute are not shown - LimeSurvey bugs and feature requests

This bug affects 1 person(s).

ID	Project	Category	View Status	Date Submitted	Last Update

20069	Bug reports	Central participant database	public	2025-04-22 12:03	2025-04-29 13:31

Reporter	DenisChenu	Assigned To
Priority	none	Severity	minor
Status	new	Resolution	open
Product Version	6.6.x

Summary	20069: Some attribute are not shown
Description	When using < or > etc ... in CPDB attribute value : It shown partially as HTML
Steps To Reproduce	Steps to reproduce Create an attribute text-box Create a user with attribute `<script>alert('XSS')</script>` Create a user with attribute `<strong>strong</strong>` Expected result See encoded value in listing Actual result See not encoded and filtered value
Tags	No tags attached.
Attached Files	Capture d’écran du 2025-04-22 12-02-53.png (26,576 bytes) Capture d’écran du 2025-04-22 12-02-53.png (26,576 bytes)

Bug heat	4
Complete LimeSurvey version number (& build)	6.13.0
I will donate to the project if issue is resolved	No
Browser	not relevant
Database type & version	not relevant
Server OS (if known)	not relevant
Webserver software & version (if known)	not relevant
PHP Version	not relevant

User List	There are no users monitoring this issue.

Date Modified	Username	Field	Change
2025-04-22 12:03	DenisChenu	New Issue
2025-04-22 12:03	DenisChenu	File Added: Capture d’écran du 2025-04-22 12-02-53.png
2025-04-22 12:03	DenisChenu	Steps to Reproduce Updated
2025-04-29 13:30	c_schmitz	Note Added: 82525
2025-04-29 13:30	c_schmitz	Bug heat	0 => 2
2025-04-29 13:31	DenisChenu	Note Added: 82526
2025-04-29 13:31	DenisChenu	Bug heat	2 => 4

c_schmitz 2025-04-29 13:30 administrator ~82525	Hm.. I think this might be intended?

DenisChenu 2025-04-29 13:31 developer ~82526	Hm.. I think this might be intended? When you edit : no HTML editor, just plain text. Then i really don't think it's inteded