Vulnerability in EPiServer.Forms
Hi,I'm having a major xform-headache trying to find a solution to this problem. Why are the required fields validating in the xform editor when the form is saved? Also, is there a fix for it?/Nils
You have a required field although the form is submitting even if you do not populate that field ?
In Firefox 4 and greater, there is built in validation for form fields. Unfortunately, EPiServer have been using an attribute “required” when editing an xform that now triggers validation of the actual form when trying to save it in the xforms editor. There is an easy fix for this though that can be applied in the EPiServerUI.Master file by adding the novalidate=”true” attribute to the form element:
<form id="aspnetForm" runat="server" novalidate="true">
This is fixed in EPiServer CMS 6 R2 so this information is valid for CMS 5/6 sites.
Thank you Linus.