View Issue Details

Jump to NotesJump to History
This bug affects 1 person(s).
 6
IDProjectCategoryView StatusDate SubmittedLast Update
08061Feature requestsSurvey editingpublic2013-07-31 02:122014-05-03 21:20
Reporterlowprofile Assigned Toc_schmitz  
PrioritynormalSeverity@50@ 
Status closedResolutionfixed 
Summary08061: certain html stripped from question text for non admin users
Description

Steps
Create a user with no global rights, just rights to a single survey
create a question group
create a question..
add some text with a html link to some site
add the option to make it open in _blank

save
edit question
note
_blank option removed

Reproduced in your demo version (survey test html and testuser/test)
and Version 2.00+ Build 130708

TagsNo tags attached.
Bug heat6
Story point estimate
Users affected %

Relationships

Relationship GraphDependency Graph
duplicate of 08972 closedc_schmitz Bug reports Currently, only an administrator can save the link target in new window (_blank) 

Users monitoring this issue

jonsen

Activities

lowprofile

lowprofile

2013-07-31 02:23

reporter   ~25900

very similar to 07949
lowprofile

lowprofile

2013-07-31 15:28

reporter   ~25901

ok, so i disabled the xssfilter and now it works, however even if the xssfilter is on you should be able to add _blank into a href?
jonsen

jonsen

2013-11-07 16:46

reporter   ~27143

Is this related to 08054 ?

It still persists in 2.00+ b130923, even though I have a testing installation in the same version that doesn't have this problem. Both have the XSS filter enabled. The testing installation was set up directly as b130923, while the other one (where the problem occurs) was upgraded since 1.92+...

It is a pain not being able to edit a page with a link using target="_blank" as a non-admin user. Can anyone shine a light on where to look for the error?
jonsen

jonsen

2014-04-29 17:45

reporter   ~29905

This is marked as solved at http://bugs.limesurvey.org/view.php?id=8972

Issue History

Date Modified Username Field Change
2013-07-31 02:12 lowprofile New Issue
2013-07-31 02:23 lowprofile Note Added: 25900
2013-07-31 15:28 lowprofile Note Added: 25901
2013-11-07 16:46 jonsen Note Added: 27143
2013-11-07 17:36 jonsen Issue Monitored: jonsen
2014-04-29 17:45 jonsen Note Added: 29905
2014-05-03 21:20 c_schmitz Status new => closed
2014-05-03 21:20 c_schmitz Assigned To => c_schmitz
2014-05-03 21:20 c_schmitz Resolution open => fixed
2014-05-03 21:20 c_schmitz Fixed in Version => 2.05+
2014-05-03 21:20 c_schmitz Relationship added duplicate of 08972
2019-11-01 17:25 c_schmitz Category Survey design => Survey editing