Vulnerability in EPiServer.Forms
Is it possible to limit certain kind of markup in the HTML-editor when working with episerver? Editors sometimes copy/paste from word for example and it can include formatting that's not sutable for the HTML-editor. I only want headers, paragraphs, links and lists and any other kind of formatting (like tables) should be cleared from the editor.
Hope this make sense and that someone knows how I can solve this! Thank you in advance,
You should be able to override valid_elements.
The way you do this is slightly different based on your CMS version, but I think adding this should to the trick.