Status/Resolution/Reason: Closed/Withdrawn/
Reporter/Name(from Bugbase): Kip Robinson / Kip Robinson (krobinsonverian)
Created: 02/28/2012
Components: CFForm
Versions: 9.0.1
Failure Type: Usability Issue
Found In Build/Fixed In Build: 9.0.1 /
Priority/Frequency: Major / All users will encounter
Locale/System: English / Windows 7
Vote Count: 0
Duplicate ID: CF-2922539
Problem Description:
When using automatic FORM validation with hidden fields, the error messages displayed contain raw HTML code. (i.e. the code is encoded when it should not be). This is happening only in 9.0.1 HF2. It seems to be due to a change in the file C:\ColdFusion9\wwwroot\WEB-INF\exception\coldfusion\filter\FormValidationException.cfm
Steps to Reproduce:
See attached CFM page, with this simple form:
<cfform action="#CGI.PATH_INFO#" method="POST">
<input type="text" name="myfield" value="" /><br/>
<input type="hidden" name="myfield_required" value="myfield is required" />
<input type="submit" value="Submit" />
</cfform>
Submit the form with the text box blank.
Actual Result:
Error message contains HTML code (see attached screenshot):
Form entries are incomplete or invalid.
<ul><li>myfield is required </li></ul> Go <a href="javascript:history.back()">back</a> and correct the problem.
Expected Result:
HTML in error message should not be escaped.
Any Workarounds:
Replace this file with the CF 9.0.1 shipped version: C:\ColdFusion9\wwwroot\WEB-INF\exception\coldfusion\filter\FormValidationException.cfm
----------------------------- Additional Watson Details -----------------------------
Watson Bug ID: 3125398
External Customer Info:
External Company:
External Customer Name: krobinsonverian
External Customer Email:
External Test Config: My Hardware and Environment details:
CF 9.0.1 HF2 64-bit Windows 7Attachments:
- February 29, 2012 00:00:00: 1_formtest.cfm
- February 29, 2012 00:00:00: 2_formtest-output.png
Comments: