Commit Graph

23 Commits (ad84b2df3fe352bc88413253414e17c5423c4010)

Author SHA1 Message Date
Aleksander Machniak 37cfa0a43b Fix malformed characters in HTML message with charset meta tag not in head (#7116) 5 years ago
Aleksander Machniak cf90c69ad7 Fix bug where 'text' attribute on body tag was ignored when displaying HTML message (#7109) 5 years ago
Aleksander Machniak bfe2bc17d7 Fix css styles leak from replied/forwarded message to the rest of the composed text (#6831)
Generally do the same with styles what we do on message preview.

This also fixes small bugs in handling styles:
- fix so <style> tag on the start of the HTML content is not ignored
- fix so body's background/bgcolor attributes are applied to the container (regression)
5 years ago
Aleksander Machniak 92ed0154d5 Followup fix on handling HTML content w/o html/head/body tag (#6713) 6 years ago
Aleksander Machniak 0dee528adb Add test for #6410 6 years ago
Aleksander Machniak 0716d499bc Fix bug where some escape sequences in html styles could bypass security checks 7 years ago
Aleksander Machniak 3196d656db Fix css conflicts in user interface and e-mail content (#5891)
... by adding prefix to element/class identifiers
Also cleaned up some code and removed global variable use.
7 years ago
Thomas Bruederli 1cfc024036 Modify links in html messages during Washtml DOM traversal
This is a more safe approach than using regex and mitigates
possible vulnerabilities using malformed html markup.
7 years ago
Thomas Bruederli c5ca818118 Adapt washtml test to pass with different versions of iconv (i.e. on CentOS7) 10 years ago
Thomas Bruederli 68ca963319 Use the right syntax for group assignments 10 years ago
Thomas Bruederli b5f64294a8 Tag more tests with @mbstring 10 years ago
Aleksander Machniak d204814a39 Fix test for blocked.gif according to recent changes 10 years ago
Aleksander Machniak 48ba4414b3 Fix download of attachments that are part of TNEF message (#1490091)
Rcube_message_part::body content should never be modified by code out of the rcube_message.
Added convenient rcube_message::get_part_body() method, making rcube_message::get_part_content() deprecated.
10 years ago
Aleksander Machniak e7cd99ca9e Fixed failing test 10 years ago
Aleksander Machniak a8b004e8d8 Improve identity selection based on From: header (#1489378) 11 years ago
Aleksander Machniak c20fa4a1ad Fix address matching in Return-Path header on identity selection (#1489374) 11 years ago
Aleksander Machniak 672a55e655 Remove unused global variable 11 years ago
Aleksander Machniak fed081229f Fix unit test 11 years ago
Aleksander Machniak 1e32540839 Add rel="noreferrer" for links in displayed messages (#1484686) 12 years ago
Aleksander Machniak 7ac94421bf Move washtml class into Roundcube Framework (rcube_washtml), add some improvements 12 years ago
Aleksander Machniak 74cd0a9b62 - Fix XSS vulnerability in vbscript: and data:text links handling (#1488850) 12 years ago
Aleksander Machniak afa0b1df58 Use setUp() instead of __construct() 12 years ago
Aleksander Machniak e824925290 Rewritten test scripts for PHPUnit 12 years ago