I'm looking for some hidden configuration settings that will allow me to disable XSS filtering when using Cartthrob. The global EE config item is ignored.
Is this possible?
1 Answer
It absolutely is.
You can find information on how to disable XSS filtering on this thread Are PDFs still an XSS problem with EE uploads?
-
Are you sure this works specifically with Cartthrob? After looking through code + docs, it looks like CT sends everything through XSS and ignores any config that is set.Jon Horton– Jon Horton2013-11-20 12:16:38 +00:00Commented Nov 20, 2013 at 12:16
-
No I don't know about Cartthrob specifically. The config affects file uploads. Are you talking about the transactional processes going on in an ecommerce site?foamcow– foamcow2013-11-20 14:04:56 +00:00Commented Nov 20, 2013 at 14:04