Want to protect your cyber security and still get fast solutions? Ask a secure question today.Go Premium

x
?
Solved

TinyMCE and PHP - Adding Extra Characters

Posted on 2013-01-10
12
Medium Priority
?
370 Views
Last Modified: 2013-01-24
I have never had this problem before.   I am using PHP and TinyMCE together to be able to send an email with HTML coding.    Something weird is happening - TinyCME and/or PHP is adding an extra "\ at the beginning of the <A HREF tag so a link in the email doesn't work.   I have never had this happen before but I have never used PHP with TinyMCE so I am not sure which side to blame.

This is the form field:

<TR><TD valign="top"><strong>Message</strong>:</TD><TD><textarea name="EmailMessage" class="tinymce" rows="15" cols="70"></textarea></TD></TR>

Open in new window


This is what I am using for the body of the email (but it also outputs to the screen incorrectly with an echo statement.

fputs($fd, $_POST['EmailMessage'] ."\n");

Open in new window


So if i have http://www.test.org as the link it gets written out as /"http://www.test.org which doesn't work.   Any ideas??
0
Comment
Question by:digitalwise
10 Comments
 
LVL 12

Expert Comment

by:jessegivy
ID: 38765439
Did you enter the link yourself? Can you replicate tinyMCE adding the slash and double quote? What happens if you delete it from the HTML view in tinyMCE?

Note that "\ and /" are very different things. The backslash is the escape control character in php as I'm sure you're aware. while the front slash is not a control character.

Post the HTML generated by tinyMCE?

Add a new link and replicate the issue.
0
 

Author Comment

by:digitalwise
ID: 38767179
This is replicable - it does it every time for every user.   If I enter stuff in the TinyMCE box that looks like this under HTML view.   <p>This is a test of the <a href="http://www.google.com">link</a>.</p>   The resulting HTML is
<p>This is a test of the <a href=\"http://www.google.com\">link</a>.</p>
0
 
LVL 54

Expert Comment

by:Scott Fell, EE MVE
ID: 38785655
@jessegivy asked if you would post your code.  That will be a big help.  The best thing to do is save the file as a static html page and post a link to it so we can see all the html, css and js.
0
What does it mean to be "Always On"?

Is your cloud always on? With an Always On cloud you won't have to worry about downtime for maintenance or software application code updates, ensuring that your bottom line isn't affected.

 
LVL 51

Expert Comment

by:Steve Bink
ID: 38786777
It sounds like your code is escaping the form input, as if it would be saved in a database.  That's fine, if you're actually saving it in a database, but the escaped version of the text should not be used for distribution.
0
 
LVL 111

Expert Comment

by:Ray Paseur
ID: 38786815
0
 

Author Comment

by:digitalwise
ID: 38787370
This is the code  
while ($row = mysql_fetch_assoc($result)) {
    
	$fd = popen("/usr/sbin/sendmail -t","w") or die("Couldn't Open Sendmail");
    fputs($fd, "To: " .$row['Email'] ." \n");
    fputs($fd, "From: " .$_POST['SendFrom'] ." \n");
    fputs($fd, "Subject:" .$_POST['Subject']. "\n");
	fputs($fd, "Content-type: text/html \n");
    fputs($fd, "X-Mailer: PHP3 \n\n");
	fputs($fd, $_POST['EmailMessage'] ."\n");
    pclose($fd);  

Open in new window


I already posted the form field above.   There is much else to it other than the links to the tinymce jscript.

I did just try adding the
	fputs($fd, mysql_real_escape_string($_POST['EmailMessage']) ."\n");

Open in new window


but that made it worse with \\\ at the beginning and end of the URL in the email message.
0
 
LVL 111

Expert Comment

by:Ray Paseur
ID: 38789928
Please run this script, shown here in its entirety.  Scan the output for magic_quotes_gpc and tell us what you find.

<?php phpinfo();

Open in new window

Thanks, ~Ray
0
 

Author Comment

by:digitalwise
ID: 38805694
magic_quotes_gpc      On      On
0
 
LVL 111

Accepted Solution

by:
Ray Paseur earned 2000 total points
ID: 38808310
magic_quotes_gpc is possibly the problem.  Please read the article and post back if there is anything in it that you do not understand.

http://www.experts-exchange.com/Web_Development/Web_Languages-Standards/PHP/A_6630-Magic-Quotes-a-bad-idea-from-day-one.html
0
 

Author Closing Comment

by:digitalwise
ID: 38816922
I had to use the script in the reference and not use the other coding...
0

Featured Post

Keep up with what's happening at Experts Exchange!

Sign up to receive Decoded, a new monthly digest with product updates, feature release info, continuing education opportunities, and more.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

When it comes to security, close monitoring is a must. According to WhiteHat Security annual report, a substantial number of all web applications are vulnerable always. Monitis offers a new product - fully-featured Website security monitoring and pr…
No other job is as rewarding and demanding as building an iPhone app is. It is not really in the hands of the developer for the success of an iPhone app. Many factors operate jointly for every iOS application's success in the market.
This tutorial walks through the best practices in adding a local business to Google Maps including how to properly search for duplicates, marker placement, and inputing business details. Login to your Google Account, then search for "Google Mapmaker…
The viewer will learn the basics of jQuery, including how to invoke it on a web page. Reference your jQuery libraries: (CODE) Include your new external js/jQuery file: (CODE) Write your first lines of code to setup your site for jQuery.: (CODE)
Suggested Courses

580 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question