When I add some HTML in a custom text field (tried on contact form), it is not escaped… I can add something like1first<div>name
It break the page ;).
Damien LE TROHER
SYNOLIA – Division Ecommerce
The forum ‘OroCRM – Security’ is closed to new topics and replies.