Las grandes mentes piensan igual

Hello,   We did a pentest on our new website. We embed many Hubspot forms on the website. A high vulnerability that was discovered is that the file upload function in Hubspot forms allows many kinds of file uploads - not just pdfs, images, docs but also executable files. The testers were able to intercept a form submission and manually inserted a field for file upload and uploaded a malicious file into Hubspot. Appreciate it if you can limit the file upload type to the common file type and prevent executable files to be uploaded. Thank you.   Jalen ... Mostrar más

Forms should have character limits in order to prevent SQL injection ve XSS. I talked with 3 different Hubspot support agent, they all suggest me an add Javascript code. Client-side solutions, like JS, cannot solve this problem since they can be easily evaded by only using the browser. So, HubSpot should provide a server-side solution that only you can provide. ... Mostrar más

We have a seasonal form that we use. It runs only in the Christmas period. For the rest of the year I would like it disabled - but not deleted.  In disabling the form a short customisable message should be shown.    ... Mostrar más

Hello,   I just notice we are only able to move forms to the folder one at a time. It might be really useful to have a bulk move feature.   Thanks ... Mostrar más

Currently, there is no way to restrict the file type or look at the file header when a file is uploaded using a form.   Just so everyone is aware, anything can be uploaded.  EXEs, Shell Scripts, Java files, you name it, and it is a potential security nightmare for anyone using Hubspot.   Imagine a threat uploading something that if clicked, can install ransomware on the computer of someone in your sales team, and it spreads to your internal network.   Just an idea.   And your HubSpot's reference on protecting their own environment. https://cwe.mitre.org/data/definitions/434.html     ... Mostrar más

The ability to automatically adjust entries in forms would be good. For example: someone writes their first name in lowercase and it is automatically corrected so that the first letter is uppercase. It should be possible to define the type of correction yourself.  ... Mostrar más

If a contact creates a Conversation via a Form submission, their initial message does not appear in the Ticket record in the Emails tab. This becomes an issue when our agents need to email the contact directly via their individual email (versus the group email connected to the Inbox.)  There is no way to respond to the contact from within the Ticket record.   This lack of functionality is preventing our agents from using Hubspot as a single hub for comms. Our agents have no option but to forward the conversation as an email to their individual company address. ... Mostrar más

I am interested in knowing if HubSpot has any plans to create editable size and/or dimensions of property fields in Hubspot Forms.    For example, what I am thinking is the ability to change the length of specific property fields so that a 'zip code' field is not the same size as an 'email' field. In this case you could have two fields on the same row, but 'email' would take up 75% of the row and 'zip code' would only need 25%.    This would greatly improve the style of the forms we have on our websites and make it looks more up-to-date.    We are currently using a product that allows this feature to be used (see screen shot). This product is extremely affordable (compared to HubSpot) and has more functionality in some instances.    Thank you!   ... Mostrar más

The idea is to pre-populate the forms with the contact information of the users that exist in Hubspot, when an email is sent to the contact to complete the form. At the moment this option is not available and the user needed to fill the form first, kind of the Chicken and the Egg story.   The data is in Hubspot, if I am sending an email directly form the tool, and link to a form the information should be passed to the form from the email itself + Hubspot DB. ... Mostrar más