Fixed XSS vulnerability in comments
git-svn-id: http://svn.automattic.com/wordpress/trunk@594 1a063a9b-81f0-0310-95a4-ce76da25c4cd
This commit is contained in:
parent
0313700657
commit
2f9ab6e333
|
@ -1207,9 +1207,9 @@ function pingback($content, $post_ID) {
|
|||
** This is how we can do <b onmouseover="alert('badbadbad')">bad stuff</b>!
|
||||
**/
|
||||
function sanitise_html_attributes($text) {
|
||||
$text = preg_replace('#( on[a-z]{1,}|style|class|id)="(.*?)"#i', '', $text);
|
||||
$text = preg_replace('#( on[a-z]{1,}|style|class|id)=\'(.*?)\'#i', '', $text);
|
||||
$text = preg_replace('#( on[a-z]{1,}|style|class|id)[ \t]*=[ \t]*([^ \t\>]*?)#i', '', $text);
|
||||
$text = preg_replace('#(([\s"\'])on[a-z]{1,}|style|class|id)="(.*?)"#i', '$1', $text);
|
||||
$text = preg_replace('#(([\s"\'])on[a-z]{1,}|style|class|id)=\'(.*?)\'#i', '$1', $text);
|
||||
$text = preg_replace('#(([\s"\'])on[a-z]{1,}|style|class|id)[ \t]*=[ \t]*([^ \t\>]*?)#i', '$1', $text);
|
||||
$text = preg_replace('#([a-z]{1,})="(( |\t)*?)(javascript|vbscript|about):(.*?)"#i', '$1=""', $text);
|
||||
$text = preg_replace('#([a-z]{1,})=\'(( |\t)*?)(javascript|vbscript|about):(.*?)\'#i', '$1=""', $text);
|
||||
$text = preg_replace('#\<(\/{0,1})([a-z]{0,2})(frame|applet)(.*?)\>#i', '', $text);
|
||||
|
|
Loading…
Reference in New Issue