#5758: Sanitize::stripTags broken
--------------------------+-------------------------------------------------
Reporter: JadB | Owner:
Type: Bug | Status: new
Priority: High | Milestone: 1.2.x.x
Component: Core Libs | Version: RC3
Severity: Normal | Resolution:
Keywords: | Php_version: n/a
Cake_version: |
--------------------------+-------------------------------------------------
Comment (by JadB):
Temporary fix:
{{{
@@ -164,7 +164,8 @@
$str = $params[0];
for ($i = 1; $i < count($params); $i++) {
- $str = preg_replace('/<' . $params[$i] .
'[^>]*>/i', '', $str);
+ $str = preg_replace('/<' . $params[$i] . '>/i', '',
$str);
+ $str = preg_replace('/<' . $params[$i] . '
[^>]*>/i', '', $str);
$str = preg_replace('/<\/' . $params[$i] .
'[^>]*>/i', '', $str);
}
return $str;
}}}
--
Ticket URL: <https://trac.cakephp.org/ticket/5758#comment:1>
CakePHP : The Rapid Development Framework for PHP <https://trac.cakephp.org/>
Cake is a rapid development framework for PHP which uses commonly known design
patterns like ActiveRecord, Association Data Mapping, Front Controller and MVC.
Our primary goal is to provide a structured framework that enables PHP users at
all levels to rapidly develop robust web applications, without any loss to
flexibility.
--~--~---------~--~----~------------~-------~--~----~
You received this message because you are subscribed to the Google Groups
"tickets cakephp" group.
To post to this group, send email to [email protected]
To unsubscribe from this group, send email to [EMAIL PROTECTED]
For more options, visit this group at
http://groups.google.com/group/tickets-cakephp?hl=en
-~----------~----~----~----~------~----~------~--~---
