漏洞
When defining the 'content' property of a PopupTemplate in ArcGIS API for JavaScript 4.23 using HTML tags, the values of certain properties are missing when the popup elements are inspected in the developer tools.
| 漏洞 ID 编号 | BUG-000148351 |
|---|---|
| 已提交 | April 7, 2022 |
| 上次修改时间 | June 5, 2024 |
| 适用范围 | ArcGIS API for JavaScript |
| 找到的版本 | 4.23 |
| 操作系统 | Windows OS |
| 操作系统版本 | 10.0 64 Bit |
| 状态 | Will Not Be Addressed |
附加信息
This occurs due to the HTML sanitizer sanitizing and escaping strings, according to the ArcGIS Online supported HTML specification: https://doc.arcgis.com/en/arcgis-online/reference/supported-html.htm. Formatting the HTML content within a function to set the PopupTemplate content fixes the problem. See the following code sample: https://codepen.io/laurenb14/pen/wvpELgw?editors=1000. Refer to this blog for more details on the HTML sanitizer: https://www.esri.com/arcgis-blog/products/js-api-arcgis/mapping/using-html-with-popups-in-the-arcgis-api-for-javascript/.重现步骤
漏洞 ID: BUG-000148351
软件:
- ArcGIS API for JavaScript
当漏洞状态发生变化时获得通知
发现关于本主题的更多内容
搜索相关信息
查找与此主题相关的培训
探索想法并提供反馈
获取来自 ArcGIS 专家的帮助
下载 Esri 支持应用程序