Community
Participate
Working Groups
Build ID: BIRT runtime (2.2.0 through 2.2.2) Steps To Reproduce: 1. Put Javascript code in a database column. 2. Write a report that uses the aforemention column. 3. Notice BIRT blindly executes this code in the web viewer. More information: This is probably related to https://bugs.eclipse.org/bugs/show_bug.cgi?id=125052. An easy fix for this (at least in the short-term) would be to add a flag to enable/disable dataset-based Javascript execution at a global level.
Jeff, If you are using a text element you may be able to prevent this by doing something like this in the expression for the text element. <VALUE-OF format="HTML"> if( row["htmlDescription"] != null ){ if( row["htmlDescription"].indexOf("</script>") > 0 ){ "Cant Display Script"; }else{ row["htmlDescription"]; } }</VALUE-OF>