dépôts / lhc / web / wiklou.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 828eea8) | patch
Follow up r65286. If we are going to support <img we should support width and height
authorPlatonides <platonides@users.mediawiki.org>
Tue, 20 Apr 2010 19:04:00 +0000 (19:04 +0000)
committerPlatonides <platonides@users.mediawiki.org>
Tue, 20 Apr 2010 19:04:00 +0000 (19:04 +0000)
commitdf6d1309e09caeca6d2e914612dcb4cc283c2c8d
tree0aa8cb6d78825cc722b8bdf6fe0beba1ede92614tree | snapshot
parent828eea81445f5a645d073af64ae88e10e82cfabbcommit | diff
Follow up r65286. If we are going to support <img we should support width and height
attributes, too. Since there's a potential for creating webbugs of 1x1px we might want
to enforce a minimum size for them. But that has always existed when the attacker provides
the image.

The sanitizer isn't treating numeric-like arguments in a special way. That is something
to fix.
includes/Sanitizer.php diff | blob | history
Wiklou, le Wiki du Wiklou