Re: Execute Applescript

This WebDNA talk-list message is from

1997


It keeps the original formatting.
numero = 10731
interpreted = N
texte = >>If we use WebCat2 to build a guestbook or anything that use >>database, dybamic data publishing, would it be possible for >>someone just type in the [applescript] [/applescript] tag >>and execute an Applescript on the server side?>We are considering a global preference thay disables the tag entirely.I think this is a very good idea! :)>Typing WebDNA tags into a database field: when database fields are >displayed on a page, they are not executed as WebDNA. So no one can >type some WebDNA [AppleScript] tags into your guestbook and have them >executed by simply viewing the guestbook. Yes, by surrounding the >[fieldname] with [Interpret]..[/Interpret] tags you can have the WebDNA >executed, but again you control whether or not that is put in the >template.Question: If I set my WebCat Prefs to InterpretAll=T, does this eliminate my need to place all those [Interpret]..[/Interpret] tags into my HTML ... or does the InterpretAll=T preference only deal with the [tags] it finds on files without a .tmpl suffix or without a tag?Sincerely, Ken Associated Messages, from the most recent to the oldest:

    
  1. Re: Execute Applescript (Kenneth Grome 1997)
  2. Re: Execute Applescript (Grant Hulbert 1997)
  3. Execute Applescript (Nelson Chen 1997)
>>If we use WebCat2 to build a guestbook or anything that use >>database, dybamic data publishing, would it be possible for >>someone just type in the [applescript] [/applescript] tag >>and execute an Applescript on the server side?>We are considering a global preference thay disables the tag entirely.I think this is a very good idea! :)>Typing WebDNA tags into a database field: when database fields are >displayed on a page, they are not executed as WebDNA. So no one can >type some WebDNA [AppleScript] tags into your guestbook and have them >executed by simply viewing the guestbook. Yes, by surrounding the >[fieldname] with [interpret]..[/Interpret] tags you can have the WebDNA >executed, but again you control whether or not that is put in the >template.Question: If I set my WebCat Prefs to InterpretAll=T, does this eliminate my need to place all those [interpret]..[/Interpret] tags into my HTML ... or does the InterpretAll=T preference only deal with the [tags] it finds on files without a .tmpl suffix or without a tag?Sincerely, Ken Kenneth Grome

DOWNLOAD WEBDNA NOW!

Top Articles:

Talk List

The WebDNA community talk-list is the best place to get some help: several hundred extremely proficient programmers with an excellent knowledge of WebDNA and an excellent spirit will deliver all the tips and tricks you can imagine...

Related Readings:

Heads up: WebCatalog 4 drops MacTCP, 68K (2000) [date format] w/in sendmail (1997) Great product and great job ! (1997) blank page from template (1997) popups, netscape vs explorer (1997) [ot] ascii values for lf and cr (2001) when will the list move? (nm) (2000) WebCatalog can't find database (1997) SendTo more emails (1998) more info on [setlineitems] (1997) [WebDNA] [hideif]'s not working in [sendmail] (2008) Grouping search fields, etc. (1997) FTP FOLDER PERMISSIONS (2004) Lookup Notfound (1998) Interesting speed comparison .. (2003) WCS Newbie question (1997) Help need to figure this out today!!! Advanced Question (2004) Adding insurance to an order, round 2 (2003) WebCat2b15MacPlugIn - [authenticate] not [protect] (1997) Nested tags count question (1997)