CommunityForgeAssets listCKEditor.Reactive
ckeditor-reactive
Reactive icon

CKEditor.Reactive

Stable version 1.1.2 (Compatible with OutSystems 11)
Uploaded
 on 11 Jul
 by 
4.2
 (14 ratings)
ckeditor-reactive

CKEditor.Reactive

Details
CKEditor is a WYSIWYG rich text editor which enables writing content directly inside of web pages or online applications.
Asset screenshot_0Asset screenshot_1Asset screenshot_2Asset screenshot_3
Read more

CKEditor is an open source WYSIWYG rich text (HTML) editor that can be embedded in reactive web and mobile apps. It brings to the web common editing features found on desktop editing applications like Microsoft Word and OpenOffice.


Main features

Paste from Word, Excel and Google Docs. Excellent tables support with columns resizing, selecting rows and columns. Toolbar customization using automated code created in the page available here.


This component is a reactive version of the web component https://www.outsystems.com/forge/component-overview/97/ckeditor


Release notes (1.1.2)

CKEditor version 4 has detected security vulnerabilities in the 4.24.1., so the component has been updated.

The CKEditor.Reactive was updated to mitigate these vulnerabilities, to assure that your applications that use this component is protected, these are the mitigation steps that need to be assured:

Issues:

  • Cross-site scripting (XSS) vulnerability caused by incorrect CDATA detection

    Mitigation (needs to be assured in development time):
    Don't allow config: fullPage: true
    Don't allow config: allowedContent = true or adding CDATA elements in Advanced Content Filter


  • Cross-site scripting (XSS) vulnerability in AJAX sample

    Mitigation
    The CKEditor.Reactive component doesn't have the affected file: samples/old/ajax.html

  • Cross-site scripting (XSS) vulnerability in samples with enabled the preview feature

    Mitigation
    The CKEditor.Reactive component doesn't have the affected file: 
    samples/old/**/*.html
    plugins/[plugin name]/samples/**/*.html
License (1.1.2)
BSD-3 license (https://opensource.org/licenses/BSD-3-Clause)
Reviews (7)
by 
17 Sep
in version 1.1.2
It worked well for me.
by 
24 Jul
in version 1.1.2
Very useful, Component!! But one issue I'm having with this forge is that I can't seem to provide the dynamic link to the text. If Anyone having solution please let me know , Thanks
by 
22 Jan
in version 1.0.10
This component is not suitable for pages that take a certain amount of time to load. On first use, if the page loading time exceeds one second, the component breaks and is unusable.

Additionally, it uses unsecured public APIs for attachment management.

For your safety, prefer another component.
Team
Other assets in this category
More from Fábio Fantato