Projects

obedit logo

obedit is a Flash-based rich text editor. It will allow a user to edit text much like you would in an office-like application, with simple editing features like bold, italic, justification, block indents, text color, font and size selection, links, bullets, background color, and spell checking.

Frequently Asked Questions about obedit >

Critical Security Update

A Cross-Site Scripting Vulnerability (XSS) has been detected in obedit v3.03 (and all previous 3.x branch versions which support loading & saving documents.)

This has been fixed in the latest release v3.04b by making the following changes:

In the file libs/obedit_html_filter.inc.php, change line 397 from:

add2Doc(unicode_to_entities(utf8_to_unicode($data)));

to:

add2Doc(unicode_to_entities(utf8_to_unicode(htmlspecialchars($data))));

This is the only change that was made in release v3.04 so it is not necessary to download the entire release to fix an existing installation of obedit. Regardless of the method used, it is strongly encouraged you implement this change or download the latest version of obedit immediately.

Project Name Source Preview
obedit 3.04 beta english (LGPL) New! ZIP (994K) here
obedit 2.41 english (LGPL) ZIP (390K) here
obedit 2.41 english interface graphics (Photoshop, LGPL) ZIP (22K) n/a

Project Log - Changes Date Version
  • Fixed XSS (Cross Site Scripting) vulnerability in XHTML output filter script.
 15/02/08 3.04
  • Reinstated LGPL License. Taking donations.
23/04/05 3.03
  • Added HTML-Editing mode
23/04/05 3.02
  • Fixed spell checker script
  • Various misc. bug fixes
  • Source download available
  • License for 3.01 changed back to GNU GPL
 22/04/05 3.01
  • Added spell checking based on GNU ASpell / PHP PSpell.
  • Added a standard data input / output model for loading & saving documents
  • Added an output filter which parses obHTML and returns CSS-formatted XHTML
  • Added save confirmation (for HTML links on the editor page)
  • Added Unicode support for PHP-based save scripts (preserves unicode once it arrives in PHP)
  • Added a status bar
  • Added document statistics ( note: has known bugs! )
  • Many other smaller improvements, bug fixes, etc.
26/03/05 3.00
  • Changed license to LGPL
  • Now providing Photoshop graphics
  • Spanish edition added thanks to Laia @ www.hayqueverlo.com
 07/16/03 2.41
  • Improved interface
  • Added bulleted lists (not parsed yet)
  • Added URL / linking
  • Created drag-able dialog for URL
 03/04/03 2.40
  • Added support for Block Indents
  • Improved interface aesthetics
  • Limited font list to system fonts
 07/22/03 2.35
  • Added ability to change fonts
  • Added ability to change font size
  • Fixed problem with selection focus
 07/21/02 2.0
  • Created original editor engine
  • Added ability to bold and italicize text
 07/20/02 1.0

< Return to Project Listing