AnsweredAssumed Answered

XSS Security Topics

Question asked by gefahrmaus on Jan 19, 2012
I'm poking around the forums and not finding the proper forum and existing discussions on preventing XSS and general web security in Alfresco (v3.4e).

My question specifically is I want to prevent content editors from adding script elements or screen inline HTML event handlers, e.g., onclick, from containing malicious code. I suspect that this is provided in the Alfresco, but currently our editors are not prevented from editing HTML and setting script elements or event handlers.

If this is not the forum, please redirect me. Thank you.

Outcomes