Aleksander Machniak
0716d499bc
Fix bug where some escape sequences in html styles could bypass security checks
7 years ago
Aleksander Machniak
3196d656db
Fix css conflicts in user interface and e-mail content ( #5891 )
...
... by adding prefix to element/class identifiers
Also cleaned up some code and removed global variable use.
7 years ago
Thomas Bruederli
1cfc024036
Modify links in html messages during Washtml DOM traversal
...
This is a more safe approach than using regex and mitigates
possible vulnerabilities using malformed html markup.
7 years ago
Thomas Bruederli
c5ca818118
Adapt washtml test to pass with different versions of iconv (i.e. on CentOS7)
10 years ago
Thomas Bruederli
68ca963319
Use the right syntax for group assignments
10 years ago
Thomas Bruederli
b5f64294a8
Tag more tests with @mbstring
10 years ago
Aleksander Machniak
d204814a39
Fix test for blocked.gif according to recent changes
10 years ago
Aleksander Machniak
48ba4414b3
Fix download of attachments that are part of TNEF message ( #1490091 )
...
Rcube_message_part::body content should never be modified by code out of the rcube_message.
Added convenient rcube_message::get_part_body() method, making rcube_message::get_part_content() deprecated.
10 years ago
Aleksander Machniak
e7cd99ca9e
Fixed failing test
10 years ago
Aleksander Machniak
a8b004e8d8
Improve identity selection based on From: header ( #1489378 )
11 years ago
Aleksander Machniak
c20fa4a1ad
Fix address matching in Return-Path header on identity selection ( #1489374 )
11 years ago
Aleksander Machniak
672a55e655
Remove unused global variable
11 years ago
Aleksander Machniak
fed081229f
Fix unit test
11 years ago
Aleksander Machniak
1e32540839
Add rel="noreferrer" for links in displayed messages ( #1484686 )
12 years ago
Aleksander Machniak
7ac94421bf
Move washtml class into Roundcube Framework (rcube_washtml), add some improvements
12 years ago
Aleksander Machniak
74cd0a9b62
- Fix XSS vulnerability in vbscript: and data:text links handling ( #1488850 )
12 years ago
Aleksander Machniak
afa0b1df58
Use setUp() instead of __construct()
12 years ago
Aleksander Machniak
e824925290
Rewritten test scripts for PHPUnit
12 years ago