Additional checking

2025-03-14 17:39:46 +01:00 · 2011-05-28 16:23:40 +00:00 · 2011-05-28 16:23:40 +00:00 · 77d0506059
commit 77d0506059
parent 676d7b78cc
1 changed files with 13 additions and 0 deletions
--- a/e107_handlers/e_parse_class.php
+++ b/e107_handlers/e_parse_class.php
@ -601,12 +601,25 @@ class e_parse
 					$s = preg_replace_callback('#('.implode('|', $vl).')#mis', array($this, 'modtag'), $t);
 				}
 			}
+			$s = preg_replace('#(?:onmouse.+?|onclick)\s*?\=#', '[sanitised]$0[/sanitised]', $s);
+			$s = preg_replace_callback('#base64([,\(])(.+?)([\)\'\"])#mis', array($this, 'proc64'), $s);
 			$ans .= $s;
 		}
 		return $ans;
 	}


+	/**
+	 * Check base-64 encoded code
+	 */
+	private function proc64($match)
+	{
+		$decode = base64_decode($match[2]);
+		return 'base64'.$match[1].base64_encode($this->dataFilter($decode)).$match[3];
+	}
+
+
+
 	private function modTag($match)
 	{
 		$ans = '';