Re: Execute Applescript

This WebDNA talk-list message is from

1997


It keeps the original formatting.
numero = 10731
interpreted = N
texte = >>If we use WebCat2 to build a guestbook or anything that use >>database, dybamic data publishing, would it be possible for >>someone just type in the [applescript] [/applescript] tag >>and execute an Applescript on the server side?>We are considering a global preference thay disables the tag entirely.I think this is a very good idea! :)>Typing WebDNA tags into a database field: when database fields are >displayed on a page, they are not executed as WebDNA. So no one can >type some WebDNA [AppleScript] tags into your guestbook and have them >executed by simply viewing the guestbook. Yes, by surrounding the >[fieldname] with [Interpret]..[/Interpret] tags you can have the WebDNA >executed, but again you control whether or not that is put in the >template.Question: If I set my WebCat Prefs to InterpretAll=T, does this eliminate my need to place all those [Interpret]..[/Interpret] tags into my HTML ... or does the InterpretAll=T preference only deal with the [tags] it finds on files without a .tmpl suffix or without a tag?Sincerely, Ken Associated Messages, from the most recent to the oldest:

    
  1. Re: Execute Applescript (Kenneth Grome 1997)
  2. Re: Execute Applescript (Grant Hulbert 1997)
  3. Execute Applescript (Nelson Chen 1997)
>>If we use WebCat2 to build a guestbook or anything that use >>database, dybamic data publishing, would it be possible for >>someone just type in the [applescript] [/applescript] tag >>and execute an Applescript on the server side?>We are considering a global preference thay disables the tag entirely.I think this is a very good idea! :)>Typing WebDNA tags into a database field: when database fields are >displayed on a page, they are not executed as WebDNA. So no one can >type some WebDNA [AppleScript] tags into your guestbook and have them >executed by simply viewing the guestbook. Yes, by surrounding the >[fieldname] with [interpret]..[/Interpret] tags you can have the WebDNA >executed, but again you control whether or not that is put in the >template.Question: If I set my WebCat Prefs to InterpretAll=T, does this eliminate my need to place all those [interpret]..[/Interpret] tags into my HTML ... or does the InterpretAll=T preference only deal with the [tags] it finds on files without a .tmpl suffix or without a tag?Sincerely, Ken Kenneth Grome

DOWNLOAD WEBDNA NOW!

Top Articles:

Talk List

The WebDNA community talk-list is the best place to get some help: several hundred extremely proficient programmers with an excellent knowledge of WebDNA and an excellent spirit will deliver all the tips and tricks you can imagine...

Related Readings:

filtering extra characters from credit card numbers (2001) NetSplat and WebCat2 (1997) [writefile] (1997) [ShowIf] if the varieable exists (1998) WebCatalog/Mac 2.1b2 New Features (1997) Where is f2? (1997) [WebDNA] User sessions - cookies only or cookies and a sessions.db? (2016) Adding Shipping Costs based on percent of subtotal (1997) WebCatalog 3.0.4 alias crash bug? (2000) Summing fields (1997) Hairy Shipping Monster (2006) Searching multiple criteria (2000) WebDNA-Talk Digests (1997) Use of Back and Reload Buttons on ShoppingCart page? (1997) [WebDNA] [OT] WebDNA Wiki - need grammar check / suggestions (2009) Running _every_ page through WebCat-error.html (1997) [OT] Google Info (2004) WebCat2b13 Mac plugin - [sendmail] and checkboxes (1997) WC1.6 to WC2 date formatting (1997) Up and running ... at last !! (1997)