X-Git-Url: https://git.heureux-cyclage.org/?a=blobdiff_plain;f=tests%2Fphpunit%2Fincludes%2FSanitizerTest.php;h=ac9971e290613b0f084524b75637e2e9c80ecc89;hb=430b31415fb734d1addb67a9b80393f5daa43c85;hp=d67f905942f6c8c11cc7edf15ea66e95fbf4c187;hpb=08bfef7fd527366930e40465733e983530b0e088;p=lhc%2Fweb%2Fwiklou.git

diff --git a/tests/phpunit/includes/SanitizerTest.php b/tests/phpunit/includes/SanitizerTest.php
index d67f905942..ac9971e290 100644
--- a/tests/phpunit/includes/SanitizerTest.php
+++ b/tests/phpunit/includes/SanitizerTest.php
@@ -182,6 +182,12 @@ class SanitizerTest extends MediaWikiTestCase {
 	 			'Remove anything after a comment-start token' ),
 			array( '', "\\2f\\2a unifinished comment'",
 	 			'Remove anything after a backslash-escaped comment-start token' ),
+			array( '/* insecure input */', 'filter: progid:DXImageTransform.Microsoft.AlphaImageLoader(src=\'asdf.png\',sizingMethod=\'scale\');'),
+			array( '/* insecure input */', '-ms-filter: "progid:DXImageTransform.Microsoft.AlphaImageLoader(src=\'asdf.png\',sizingMethod=\'scale\')";'),
+			array( '/* insecure input */', 'width: expression(1+1);'),
+			array( '/* insecure input */', 'background-image: image(asdf.png);'),
+			array( '/* insecure input */', 'background-image: -webkit-image(asdf.png);'),
+			array( '/* insecure input */', 'background-image: -moz-image(asdf.png);'),
 		);
 	}
 }