Table of contents
Unsafe features is a set of plugin features that may potentially harm your website if you have non-admin users (registered users with edit permissions) on your site. For example, a regular user with Subscriber role may use the following shortcode to display arbitrary Javascript code on your site:
[su_button onclick="alert();"][/su_button]To prevent possible vulnerabilities the plugin will automatically disable such features once you have at least one non-admin user on your site.
[su_button onclick=""] ... [/su_button] (the onclick attribute)[su_meta] shortcode[su_csv_table url=""] (the url attribute)[su_table url=""] (the url attribute)If you are 100% sure your users won’t harm your website and you need to use an unsafe feature, navigate to Dashboard → Shortcodes → Settings → Advanced settings and turn on the Unsafe features option.