[Bug 8186] A HREF with "h/" prefix before attribute makes URI invisible to SA

bugzilla-daemon Wed, 13 Sep 2023 21:54:08 -0700

https://bz.apache.org/SpamAssassin/show_bug.cgi?id=8186


Joe Wein <joew...@surbl.org> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
                 CC|                            |joew...@surbl.org

--- Comment #1 from Joe Wein <joew...@surbl.org> ---
We are seeing a third variant of /href:

<a h/href="https://spamdomain";>
<a s/href="https://spamdomain";>

<a k/href="https://spamdomain";>

Chrome and therefore in practice most webmailers seems to ignore *any* sequence
of letters followed by a slash in front of the href attribute, e.g.

<a example/href="https://spamdomain";>

will be shown as a clickable hypertext link to the domain while SA will not see
this as a href attribute at all and not apply any URI filters to it.

-- 
You are receiving this mail because:
You are the assignee for the bug.

[Bug 8186] A HREF with "h/" prefix before attribute makes URI invisible to SA

Reply via email to