Commit Graph

20 Commits (598cc5f42f93d6feb436c6ab682d6805b3c67bd6)

Author SHA1 Message Date
Aleksander Machniak 92ed0154d5 Followup fix on handling HTML content w/o html/head/body tag (#6713) 5 years ago
Aleksander Machniak 0dee528adb Add test for #6410 6 years ago
Aleksander Machniak 0716d499bc Fix bug where some escape sequences in html styles could bypass security checks 6 years ago
Aleksander Machniak 3196d656db Fix css conflicts in user interface and e-mail content (#5891)
... by adding prefix to element/class identifiers
Also cleaned up some code and removed global variable use.
7 years ago
Thomas Bruederli 1cfc024036 Modify links in html messages during Washtml DOM traversal
This is a more safe approach than using regex and mitigates
possible vulnerabilities using malformed html markup.
7 years ago
Thomas Bruederli c5ca818118 Adapt washtml test to pass with different versions of iconv (i.e. on CentOS7) 9 years ago
Thomas Bruederli 68ca963319 Use the right syntax for group assignments 9 years ago
Thomas Bruederli b5f64294a8 Tag more tests with @mbstring 9 years ago
Aleksander Machniak d204814a39 Fix test for blocked.gif according to recent changes 10 years ago
Aleksander Machniak 48ba4414b3 Fix download of attachments that are part of TNEF message (#1490091)
Rcube_message_part::body content should never be modified by code out of the rcube_message.
Added convenient rcube_message::get_part_body() method, making rcube_message::get_part_content() deprecated.
10 years ago
Aleksander Machniak e7cd99ca9e Fixed failing test 10 years ago
Aleksander Machniak a8b004e8d8 Improve identity selection based on From: header (#1489378) 11 years ago
Aleksander Machniak c20fa4a1ad Fix address matching in Return-Path header on identity selection (#1489374) 11 years ago
Aleksander Machniak 672a55e655 Remove unused global variable 11 years ago
Aleksander Machniak fed081229f Fix unit test 11 years ago
Aleksander Machniak 1e32540839 Add rel="noreferrer" for links in displayed messages (#1484686) 11 years ago
Aleksander Machniak 7ac94421bf Move washtml class into Roundcube Framework (rcube_washtml), add some improvements 12 years ago
Aleksander Machniak 74cd0a9b62 - Fix XSS vulnerability in vbscript: and data:text links handling (#1488850) 12 years ago
Aleksander Machniak afa0b1df58 Use setUp() instead of __construct() 12 years ago
Aleksander Machniak e824925290 Rewritten test scripts for PHPUnit 12 years ago