Changeset 5636 in subversion
- Timestamp:
- Dec 21, 2011 5:21:59 AM (17 months ago)
- Location:
- branches/release-0.7/tests
- Files:
-
- 2 edited
-
mailfunc.php (modified) (1 diff)
-
src/BID-26800.txt (modified) (2 diffs)
Legend:
- Unmodified
- Added
- Removed
-
branches/release-0.7/tests/mailfunc.php
r5499 r5636 93 93 { 94 94 $part = $this->get_html_part('src/BID-26800.txt'); 95 $washed = rcmail_ print_body($part, array('safe' => true));95 $washed = rcmail_html4inline(rcmail_print_body($part, array('safe' => true)), 'dabody', '', $attr, true); 96 96 97 97 $this->assertNoPattern('/alert|expression|javascript|xss/', $washed, "Remove evil style blocks"); -
branches/release-0.7/tests/src/BID-26800.txt
r2323 r5636 11 11 <p><div> block</p> 12 12 <div style="font-style:italic">valid css</div> 13 <div style="color:red; background:url('//somedomain.com/somepath/somefile.png')"> 13 14 <div style="{ left:expression( alert('expression!') ) }"> 14 15 <div style="{ background:url( alert('URL!') ) }"> … … 17 18 <p>Inject comment text</p> 18 19 <div style="{ left:exp/* */ression( alert('xss3') ) }"> 19 <div style=" { background:u/* */rl( alert('xssurl3') ) }">20 <div style=" background:u/* */rl( alert('xssurl3') ) "> 20 21 21 22 <h1>4 test</h1>
Note: See TracChangeset
for help on using the changeset viewer.
