Jump to content

  • You cannot start a new topic
  • You cannot reply to this topic

Multi-Vendor: Can Not Save Html And Script Tags In Descriptioin Rate Topic   - - - - -

 
  • crazyshark20
  • Junior Member
  • Members
  • Join Date: 19-Aug 09
  • 301 posts

Posted 26 December 2015 - 08:39 AM #1

NotThis website has restrictions on inserting HTML code. Some HTML tags like <object>, <iframe>, <embed> and JavaScript code are cut off.
i got this error when i want to see my products
Attention Some errors occurred (Internal Server Error). Please try again.
i coudnt see my products i use multivendor 4.3.5
Thanks for all


 
  • crazyshark20
  • Junior Member
  • Members
  • Join Date: 19-Aug 09
  • 301 posts

Posted 27 December 2015 - 02:32 PM #2

notice_entered_html_was_sanitized

 

error_ajax



 
  • eComLabs
  • CS-Cart Expert
  • Authorized Reseller
  • Join Date: 27-Jan 14
  • 19688 posts

Posted 28 December 2015 - 09:53 AM #3

This behaviour is related with the sanitize_user_html option in the config.local.php file:

    // Whether to remove any javascript code from description and name of product, category, etc.
    // Auto - false for ULT, true for MVE.
    'sanitize_user_html' => 'auto',

Try to disable it (set value to false)


GET A FREE QUOTE | CS-Cart Add-ons | CS-Cart Licenses | CS-Cart Development | CS-Cart Design | Server Configuration | UniTheme and YOUPI
CS-Cart                USD 345     Multi-Vendor              USD 1250    CS-Cart RU                         24500 руб.
CS-Cart Ultimate  USD 775     CS-Cart + YOUPI      USD 545      CS-Cart RU + UniTheme    36000 руб.


 
  • shikhar
  • Senior Member
  • Members
  • Join Date: 09-Oct 11
  • 156 posts

Posted 30 December 2015 - 08:33 AM #4

 

NotThis website has restrictions on inserting HTML code. Some HTML tags like <object>, <iframe>, <embed> and JavaScript code are cut off.
i got this error when i want to see my products
Attention Some errors occurred (Internal Server Error). Please try again.
i coudnt see my products i use multivendor 4.3.5
Thanks for all

 

 

Hi,

 

could you find a solution for this ?Doesnt work for me even after changing the config value  'sanitize_user_html' => 'false'.


Cs-cart tips at shikhar.me

 
  • eComLabs
  • CS-Cart Expert
  • Authorized Reseller
  • Join Date: 27-Jan 14
  • 19688 posts

Posted 30 December 2015 - 08:59 AM #5

Hi,

 

could you find a solution for this ?Doesnt work for me even after changing the config value  'sanitize_user_html' => 'false'.

 

In this case please contact CS-Cart support team. The issue should be examined on your server


GET A FREE QUOTE | CS-Cart Add-ons | CS-Cart Licenses | CS-Cart Development | CS-Cart Design | Server Configuration | UniTheme and YOUPI
CS-Cart                USD 345     Multi-Vendor              USD 1250    CS-Cart RU                         24500 руб.
CS-Cart Ultimate  USD 775     CS-Cart + YOUPI      USD 545      CS-Cart RU + UniTheme    36000 руб.


 
  • shikhar
  • Senior Member
  • Members
  • Join Date: 09-Oct 11
  • 156 posts

Posted 31 December 2015 - 04:00 PM #6

My bad, I had put false in single quotes should be 'sanitize_user_html' => false

Works fine now !


Cs-cart tips at shikhar.me

 
  • eComLabs
  • CS-Cart Expert
  • Authorized Reseller
  • Join Date: 27-Jan 14
  • 19688 posts

Posted 05 January 2016 - 08:58 AM #7

I am glad to hear that the issue is solved


GET A FREE QUOTE | CS-Cart Add-ons | CS-Cart Licenses | CS-Cart Development | CS-Cart Design | Server Configuration | UniTheme and YOUPI
CS-Cart                USD 345     Multi-Vendor              USD 1250    CS-Cart RU                         24500 руб.
CS-Cart Ultimate  USD 775     CS-Cart + YOUPI      USD 545      CS-Cart RU + UniTheme    36000 руб.


 
  • arteeni
  • Advanced Member
  • Members
  • Join Date: 07-Aug 15
  • 85 posts

Posted 30 June 2016 - 06:21 PM #8

This behaviour is related with the sanitize_user_html option in the config.local.php file:

    // Whether to remove any javascript code from description and name of product, category, etc.
    // Auto - false for ULT, true for MVE.
    'sanitize_user_html' => 'auto',

Try to disable it (set value to false)

 

Thanks eComLabs - this did the trick. Question, though: does disabling this option give vendors the ability to run malicious code? I don't mind if vendors use html code for formatting or things like embedding a video, but I definitely don't want to open us up to security issues.


Arteeni - a marketplace for artisan, handmade goods, with a charitable twist.


 
  • mifzal79
  • Member
  • Trial users
  • Join Date: 27-Jul 17
  • 22 posts

Posted 03 September 2019 - 07:23 PM #9

I have created an html block and inserted this

 

<!--Start of Tawk.to Script-->
<script type="text/javascript">
var Tawk_API=Tawk_API||{}, Tawk_LoadStart=new Date();
(function(){
var s1=document.createElement("script"),s0=document.getElementsByTagName("script")[0];
s1.async=true;
s1.src='https://embed.tawk.t...1af24/default';
s1.charset='UTF-8';
s1.setAttribute('crossorigin','*');
s0.parentNode.insertBefore(s1,s0);
})();
</script>
<!--End of Tawk.to Script-->

 

While my appearance set to "Do not use" under Default wysiwyg editor:

 

I get Forbidden page error.

 

But When I use other options other than "Do not use", then those javascript codes are not saving. What can be the problem?

 

By the way, I am using 4.10



 
  • eComLabs
  • CS-Cart Expert
  • Authorized Reseller
  • Join Date: 27-Jan 14
  • 19688 posts

Posted 04 September 2019 - 05:50 AM #10

Try to wrap your code with

{literal}
...
{/literal}

GET A FREE QUOTE | CS-Cart Add-ons | CS-Cart Licenses | CS-Cart Development | CS-Cart Design | Server Configuration | UniTheme and YOUPI
CS-Cart                USD 345     Multi-Vendor              USD 1250    CS-Cart RU                         24500 руб.
CS-Cart Ultimate  USD 775     CS-Cart + YOUPI      USD 545      CS-Cart RU + UniTheme    36000 руб.


 
  • mifzal79
  • Member
  • Trial users
  • Join Date: 27-Jul 17
  • 22 posts

Posted 04 September 2019 - 10:10 AM #11

What do you mean by that?

 
  • eComLabs
  • CS-Cart Expert
  • Authorized Reseller
  • Join Date: 27-Jan 14
  • 19688 posts

Posted 04 September 2019 - 01:55 PM #12

If you use HML block with Smarty support, add the following content

 

{literal}
<!--Start of Tawk.to Script-->
<script type="text/javascript">
var Tawk_API=Tawk_API||{}, Tawk_LoadStart=new Date();
(function(){
var s1=document.createElement("script"),s0=document.getElementsByTagName("script")[0];
s1.async=true;
s1.src='https://embed.tawk.to/5d69e48c77aa790be331af24/default%27;';
s1.charset='UTF-8';
s1.setAttribute('crossorigin','*');
s0.parentNode.insertBefore(s1,s0);
})();
</script>
<!--End of Tawk.to Script-->
{/literal}

GET A FREE QUOTE | CS-Cart Add-ons | CS-Cart Licenses | CS-Cart Development | CS-Cart Design | Server Configuration | UniTheme and YOUPI
CS-Cart                USD 345     Multi-Vendor              USD 1250    CS-Cart RU                         24500 руб.
CS-Cart Ultimate  USD 775     CS-Cart + YOUPI      USD 545      CS-Cart RU + UniTheme    36000 руб.


 
  • mifzal79
  • Member
  • Trial users
  • Join Date: 27-Jul 17
  • 22 posts

Posted 04 September 2019 - 02:23 PM #13

 

If you use HML block with Smarty support, add the following content

 

{literal}
<!--Start of Tawk.to Script-->
<script type="text/javascript">
var Tawk_API=Tawk_API||{}, Tawk_LoadStart=new Date();
(function(){
var s1=document.createElement("script"),s0=document.getElementsByTagName("script")[0];
s1.async=true;
s1.src='https://embed.tawk.to/5d69e48c77aa790be331af24/default%27;';
s1.charset='UTF-8';
s1.setAttribute('crossorigin','*');
s0.parentNode.insertBefore(s1,s0);
})();
</script>
<!--End of Tawk.to Script-->
{/literal}

 

 

I have made 'sanitize_user_html' => false, in config.local.php file

 

I went to Admin panel and tried to add a smarty html block with this

 

{literal}
<!--Start of Tawk.to Script-->
<script type="text/javascript">
var Tawk_API=Tawk_API||{}, Tawk_LoadStart=new Date();
(function(){
var s1=document.createElement("script"),s0=document.getElementsByTagName("script")[0];
s1.async=true;
s1.src='https://embed.tawk.t...af24/default';';
s1.charset='UTF-8';
s1.setAttribute('crossorigin','*');
s0.parentNode.insertBefore(s1,s0);
})();
</script>
<!--End of Tawk.to Script-->
{/literal}
 
And I get this error
 
404
ERROR

 

Oops!
We were unable to find what you were looking for.

The page you have requested cannot be found.

Error code: Page Not Found



 
  • eComLabs
  • CS-Cart Expert
  • Authorized Reseller
  • Join Date: 27-Jan 14
  • 19688 posts

Posted 05 September 2019 - 05:47 AM #14

It is required to examine issue on your server in this case


GET A FREE QUOTE | CS-Cart Add-ons | CS-Cart Licenses | CS-Cart Development | CS-Cart Design | Server Configuration | UniTheme and YOUPI
CS-Cart                USD 345     Multi-Vendor              USD 1250    CS-Cart RU                         24500 руб.
CS-Cart Ultimate  USD 775     CS-Cart + YOUPI      USD 545      CS-Cart RU + UniTheme    36000 руб.


 
  • mifzal79
  • Member
  • Trial users
  • Join Date: 27-Jul 17
  • 22 posts

Posted 05 September 2019 - 05:53 AM #15

Ok what do you need Sir? Shall I give you my hosting details? Is this related to .htaccess file?