Author: Åström Niclas, Teknikhuset AB.

Published: 2004-08-10

Applies to: Content Studio 4.0

Type: Information


A regular user cannot use the Insert script component.


This component is considered as beeing a possible security hole. If all users would have the possible to use this component they can write server side ASP-code without any restrictions. This hole has been tightened in Content Studio version 4 where only members of the Administrators group has the right to use this component. When a new site is created in Content Studio 4 the security descriptor of Insert script has a tight setting that effectively locks untrusted users from using this component.


An administrator can modify the security of the Insert script component so that trusted persons has read permission on this component.