Hello, unfortunately it is possible to add some executable scripts in the description metadata of communities and collections. Even if someone don’t plan evil things, inexperienced community or collection admins could do some damage.
Do you have a solution or a workaround for this? I've looked for the code snippet which execute the HTML code but didn’t find anything. Many thanks in advance and kind regards, Paul Münch -- All messages to this mailing list should adhere to the DuraSpace Code of Conduct: https://duraspace.org/about/policies/code-of-conduct/ --- You received this message because you are subscribed to the Google Groups "DSpace Technical Support" group. To unsubscribe from this group and stop receiving emails from it, send an email to dspace-tech+unsubscr...@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/dspace-tech/34EFEFF6-CB39-4FCE-B6D3-F10871A4509B%40staff.uni-marburg.de.
smime.p7s
Description: S/MIME cryptographic signature