Hey,
Our team just found out that script tags and also elements can be entered to the datagrid rows when in edit mode and after end edit is called they are being activated!
This is a security issue, and I dont think that everyone who uses EasyUI should start testing the user input for script tags and so on..
This is something EasyUI should handle in the infrastructure level.
Please check it out here:
http://jsfiddle.net/3L4ej4dx/43/ I have entered a script tag to the first row with plus sign in the <+script> and in </+script>, remove the plus from it and watch the script being activated.
Thanks.