Message4426
Attached a patch to fix the issue.
I changed the clean_message function to escape everything first and then
"restore" the whitelisted elements (i.e. strong, em, b, i, a, br).
This might not be super-efficient, but it's safer and this is not a
performance-critical part anyway. |
|
| Date |
User |
Action |
Args |
| 2011-09-18 12:58:29 | ezio.melotti | set | messageid: <1316350709.6.0.603965142555.issue2550724@psf.upfronthosting.co.za> |
| 2011-09-18 12:58:29 | ezio.melotti | set | recipients:
+ ezio.melotti, ber, davidben |
| 2011-09-18 12:58:29 | ezio.melotti | link | issue2550724 messages |
| 2011-09-18 12:58:29 | ezio.melotti | create | |
|