TOPIC: Disable URL, IMG, CODE in Toolbar

Hello,

I'am afraid that (even using recaptcha) thoose link could represent some potential securtiy vulnerability, and as I am not intersted in using it I wanted to ask how to (only) deactivate the one indicated in red. Is this possible in the standard configuration?

bild upload

Thank you!

Regards

Just go in the backend and disable bbcode support in layout, then go to template and disable bbcode there as well and those things won't be shown there.

Regards,
Daniel

Daniel Dimitrov wrote: Just go in the backend and disable bbcode support in layout, then go to template and disable bbcode there as well and those things won't be shown there.

Thank you, but my question was another.
I want that font-formatting and quote icons still be shown (see picture). Would that be possible?
If I disable bbcode the whole toolbar disapperars (beside the smilies).

You can hide the other stuff with a template override, but a user will still be able to enter those and the system will still render them. Why is font-formating secure and the rest insecure??? Doesn't make much sense for me. All bbcode goes through the same security testing.

Isn't there a potential risk that a real user enters a link to a malicious site or uploding a svg-image (containing malicious code)? Or using code placement to perform script insertion attacks?