[ZendTo] Re: Request Drop-off email note contains javascript code
Jules
Jules at Zend.To
Tue Jan 28 17:26:41 GMT 2014
You've messed something up. Check the email template files in
/opt/zendto/templates. You have damaged one of the email templates.
Jules.
On 08/01/2014 11:10, Der PCFreak wrote:
> Hi,
>
> I just wrote some documentation about the "request Drop-off" process
> for our internal users.
> I did a sample Drop-off request an entered the following note
>
> /SNIP
> * Note *
>
> Hi John,
>
> as spoken by phone, please upload the database dump using our WIDROP
> Portal.
>
> Thank you
>
> Peter
>
> \SNAP
>
>
> I think I placed the cursor after the "Thank you" before pressing the
> button. In the mail the recipient got there was the text
>
>
> "javascript:submitform();" after the words "Thank you" as shown here:
>
> /SNIP
>
> * Note *
>
> Hi John,
>
> as spoken by phone, please upload the database dump using our WIDROP
> Portal.
>
> Thank youjavascript:submitform();
>
> Peter
>
> \SNAP
>
> I don't know if this is a bug, I just wanted to inform you about this
> behaviour.
>
>
> Greets
>
>
> PCFreak
>
>
>
> _______________________________________________
> ZendTo mailing list
> ZendTo at zend.to
> http://mailman.ecs.soton.ac.uk/mailman/listinfo/zendto
>
> Jules
>
> --
> Julian Field MEng MBCS CITP CEng
>
> 'People will believe a big lie sooner than a little one, and if you
> repeat it frequently enough people will sooner or later believe
> it.' - Walter Langer
>
> www.Zend.To
> Twitter: @JulesFM
> PGP footprint: EE81 D763 3DB0 0BFD E1DC 7222 11F6 5947 1415 B654
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://mailman.ecs.soton.ac.uk/pipermail/zendto/attachments/20140128/775822b3/attachment-0001.html
More information about the ZendTo
mailing list