Multi-Vendor: Can Not Save Html And Script Tags In Descriptioin

Store Builder Questions
1
NotThis website has restrictions on inserting HTML code. Some HTML tags like ,
i got this error when i want to see my products
Attention Some errors occurred (Internal Server Error). Please try again.
i coudnt see my products i use multivendor 4.3.5
Thanks for all
2

notice_entered_html_was_sanitized

error_ajax

3

This behaviour is related with the sanitize_user_html option in the config.local.php file:

    // Whether to remove any javascript code from description and name of product, category, etc.
    // Auto - false for ULT, true for MVE.
    'sanitize_user_html' => 'auto',

Try to disable it (set value to false)

4

NotThis website has restrictions on inserting HTML code. Some HTML tags like ,
5

Hi,

could you find a solution for this ?Doesnt work for me even after changing the config value 'sanitize_user_html' => 'false'.

In this case please contact CS-Cart support team. The issue should be examined on your server

6

My bad, I had put false in single quotes should be 'sanitize_user_html' => false

Works fine now !

7

I am glad to hear that the issue is solved

8

This behaviour is related with the sanitize_user_html option in the config.local.php file:

    // Whether to remove any javascript code from description and name of product, category, etc.
    // Auto - false for ULT, true for MVE.
    'sanitize_user_html' => 'auto',

Try to disable it (set value to false)

Thanks eComLabs - this did the trick. Question, though: does disabling this option give vendors the ability to run malicious code? I don't mind if vendors use html code for formatting or things like embedding a video, but I definitely don't want to open us up to security issues.

9

I have created an html block and inserted this



While my appearance set to "Do not use" under Default wysiwyg editor:

I get Forbidden page error.

But When I use other options other than "Do not use", then those javascript codes are not saving. What can be the problem?

By the way, I am using 4.10

10

Try to wrap your code with

{literal}
...
{/literal}
11

What do you mean by that?

12

If you use HML block with Smarty support, add the following content

{literal}



{/literal}
13

If you use HML block with Smarty support, add the following content

{literal}



{/literal}

I have made 'sanitize_user_html' => false, in config.local.php file

I went to Admin panel and tried to add a smarty html block with this

{literal}

<script type="text/javascript">
var Tawk_API=Tawk_API||{}, Tawk_LoadStart=new Date();
(function(){
var s1=document.createElement("script"),s0=document.getElementsByTagName("script")[0];
s1.async=true;
s1.src='https://embed.tawk.to/5d69e48c77aa790be331af24/default%27;';
s1.charset='UTF-8';
s1.setAttribute('crossorigin','*');
s0.parentNode.insertBefore(s1,s0);
})();
</script>

{/literal}
And I get this error
404
ERROR

Oops!<br>
We were unable to find what you were looking for.

The page you have requested cannot be found.

Error code: Page Not Found

14

It is required to examine issue on your server in this case

15

Ok what do you need Sir? Shall I give you my hosting details? Is this related to .htaccess file?