BookStack/tests/Entity/PageContentTest.php at aefd4d423cacf042d24daa176af8622e1d7f78dd

mirror of https://github.com/BookStackApp/BookStack.git synced 2026-03-01 03:09:42 +03:00

Files

Dan Brown ad542f0407 Prevented potential inline JS event usage

- Removes 'on*' attributes from elements.
- Also updated script logic to remove scripts instead of escaping.
- All JS injection removal now uses DomDocument + xpath parsing.

2019-05-05 13:53:37 +01:00

5.1 KiB

Raw Blame History

View Raw

5.1 KiB Raw Blame History

5.1 KiB

Raw Blame History