mirror/php-e107
1
0
Fork 0
mirror of https://github.com/e107inc/e107.git synced 2025-08-12 09:34:54 +02:00
Code Issues Releases Wiki Activity

Fixes #4486 - Invalid attributes not being fully filtered.

Browse Source
This commit is contained in:
Cameron
2021-04-12 11:13:37 -07:00
parent 444d8d6dc0
commit 8f7ab86413
2 changed files with 8 additions and 3 deletions
Download Patch File Download Diff File Expand all files Collapse all files

8
e107_tests/tests/unit/e_parseTest.php
View File

@@ -2635,7 +2635,13 @@ Your browser does not support the audio tag.
14 => array(
'html' => '<script>alert(1)</script>', // test removal of 'script' tags
'expected' => ''
)
),
15 => array(
'html' => '<iframe width="640" height="360" frameborder="0" allowfullscreen src="http://nowhere.com" this-attribute-should-be-removed="value1" this-attribute-should-also-be-removed="value2"></iframe>',
'expected' => '<iframe width="640" height="360" frameborder="0" allowfullscreen="" src="http://nowhere.com"></iframe>'
),
);