• Login
  • Register

DNN Forums

Ask questions about your website to get help learning DNN and help resolve issues.
PrevPrev
NextNext

Removing all traces of Telerik

You are not authorized to post a reply.
Forums > Upgrading DNN Platform
Sort:

Steve Elsbury



New Around Here


Posts:8
New Around Here

6/13/2019 4:13 AM

    Having recently upgraded to 9.1.1 (on my way to 9.3.2) I switched the editor to the DNN Connect CKE Editor, and removed the old telerik editor from the web.config, but I still see MANY entries scattered about that refer to the Telerik assemblies - e,g,

    In Modules, there is an entry for the RADUploadModule

    In handlers, there is the RADProgressHandler,  Telerik.Web.UI.WebResource and Telerik.Web.UI.ChartHttpHandler, and there are also many duplicate entries (9 in fact) looking like this:

          TelerikEditorProvider.HtmTemplateFileHandler, DotNetNuke.HtmlEditor.TelerikEditorProvider" />

    My ASSUMPTION is that all entries that refer to telerik could be removed, and I would obviously try it on a test instance first - but can anyone confirm this course of action should be correct?

    TIA

    Steve


    Daniel Valadas



    Growing Member


    Posts:84
    Growing Member

    6/13/2019 6:07 AM
      Unfortunately not yet. It is planned to remove all telerik dependencies but currently the file manager and a handful of dnn controls still rely on it. We hope to get this done for Dnn 10

      Steve Elsbury



      New Around Here


      Posts:8
      New Around Here

      6/17/2019 8:04 AM
        Many thanks for the reply Daniel - I shall hurry up and wait then!

        Alexander



        New Around Here


        Posts:9
        New Around Here

        4/9/2020 1:21 PM

          My sites was disabled on hosting because it contains a vulnerable component
          Telerik.Web.UI, Version=2013.2.717.40, Culture=neutral, PublicKeyToken=121fae78165ba3d4

          The problem is described here:
          https://know.bishopfox.com/research/cve-2019-18935-remote-code-execution-in-telerik-ui

          My site version is DNN 9.5 now.

          The dangerous version of Telerik is still In the DNN 9.5 distribution !!! My business partners can't wait. They resent it.

           


          Alexander



          New Around Here


          Posts:9
          New Around Here

          11/28/2021 7:05 PM

            Many thanks to all the developers that we can now delete Telerik forever.

            You are not authorized to post a reply.

            These Forums are dedicated to discussion of DNN Platform.

            For the benefit of the community and to protect the integrity of the ecosystem, please observe the following posting guidelines:

            1. If you have (suspected) security issues, please do not post them in the forums but send an email to [email protected]
            2. No Advertising. This includes promotion of commercial and non-commercial products or services which are not directly related to DNN.
            3. No vendor trolling / poaching. If someone posts about a vendor issue, allow the vendor or other customers to respond. Any post that looks like trolling / poaching will be removed.
            4. Discussion or promotion of DNN Platform product releases under a different brand name are strictly prohibited.
            5. No Flaming or Trolling.
            6. No Profanity, Racism, or Prejudice.
            7. Site Moderators have the final word on approving / removing a thread or post or comment.
            8. English language posting only, please.

            Would you like to help us?

            Awesome! Simply post in the forums using the link below and we'll get you started.

            Get Involved