Re: Execute Applescript

This WebDNA talk-list message is from

1997


It keeps the original formatting.
numero = 10731
interpreted = N
texte = >>If we use WebCat2 to build a guestbook or anything that use >>database, dybamic data publishing, would it be possible for >>someone just type in the [applescript] [/applescript] tag >>and execute an Applescript on the server side?>We are considering a global preference thay disables the tag entirely.I think this is a very good idea! :)>Typing WebDNA tags into a database field: when database fields are >displayed on a page, they are not executed as WebDNA. So no one can >type some WebDNA [AppleScript] tags into your guestbook and have them >executed by simply viewing the guestbook. Yes, by surrounding the >[fieldname] with [Interpret]..[/Interpret] tags you can have the WebDNA >executed, but again you control whether or not that is put in the >template.Question: If I set my WebCat Prefs to InterpretAll=T, does this eliminate my need to place all those [Interpret]..[/Interpret] tags into my HTML ... or does the InterpretAll=T preference only deal with the [tags] it finds on files without a .tmpl suffix or without a tag?Sincerely, Ken Associated Messages, from the most recent to the oldest:

    
  1. Re: Execute Applescript (Kenneth Grome 1997)
  2. Re: Execute Applescript (Grant Hulbert 1997)
  3. Execute Applescript (Nelson Chen 1997)
>>If we use WebCat2 to build a guestbook or anything that use >>database, dybamic data publishing, would it be possible for >>someone just type in the [applescript] [/applescript] tag >>and execute an Applescript on the server side?>We are considering a global preference thay disables the tag entirely.I think this is a very good idea! :)>Typing WebDNA tags into a database field: when database fields are >displayed on a page, they are not executed as WebDNA. So no one can >type some WebDNA [AppleScript] tags into your guestbook and have them >executed by simply viewing the guestbook. Yes, by surrounding the >[fieldname] with [interpret]..[/Interpret] tags you can have the WebDNA >executed, but again you control whether or not that is put in the >template.Question: If I set my WebCat Prefs to InterpretAll=T, does this eliminate my need to place all those [interpret]..[/Interpret] tags into my HTML ... or does the InterpretAll=T preference only deal with the [tags] it finds on files without a .tmpl suffix or without a tag?Sincerely, Ken Kenneth Grome

DOWNLOAD WEBDNA NOW!

Top Articles:

Talk List

The WebDNA community talk-list is the best place to get some help: several hundred extremely proficient programmers with an excellent knowledge of WebDNA and an excellent spirit will deliver all the tips and tricks you can imagine...

Related Readings:

WebCatalog books and othre resources (2001) Need relative path explanation (1997) shipcost (1997) url question (2002) forms and variables (1998) A question on sub-categories (1997) two unique banners on one page (1997) OT - webdnadev.net ...... links bad??? (2005) all records returned. (1997) return two fields w/ [lookup] (1998) WC 2.0 frames feature (1997) WebCat2b13MacPlugIn - [shownext method=post] ??? (1997) Parameter vs. Operator (1998) no global [username] or [password] displayed ... (1997) [WebDNA] TCPConnect Slowness (2013) Can you help a newbie out? (2000) t or f (1997) anyone using encrypted templates on non-US NT OS (1999) WCS Newbie question (1997) [sendmail] (2000)