summaryrefslogtreecommitdiff
path: root/roundcubemail/program/lib/washtml.php
AgeCommit message (Collapse)Author
2011-02-09Fix stripping invalid comments. Changes from r4483 also stripped entire CSS ↵thomasb
blocks packed in comments git-svn-id: https://svn.roundcube.net/trunk@4517 208e9e7b-5314-0410-a742-e7e81cd9613c
2011-02-03- Fix handling of invalid HTML comments in messages (#1487759)alec
git-svn-id: https://svn.roundcube.net/trunk@4483 208e9e7b-5314-0410-a742-e7e81cd9613c
2010-12-23- Don't return empty I and B tags in short formalec
git-svn-id: https://svn.roundcube.net/trunk@4366 208e9e7b-5314-0410-a742-e7e81cd9613c
2010-08-03- Don't allow short form of empty <strong> tagalec
git-svn-id: https://svn.roundcube.net/trunk@3860 208e9e7b-5314-0410-a742-e7e81cd9613c
2010-06-23- Improve parsing of styled empty tags in HTML messages (#1486812)alec
git-svn-id: https://svn.roundcube.net/trunk@3778 208e9e7b-5314-0410-a742-e7e81cd9613c
2010-06-07- Fix RFC2397 handling in wash_style()alec
git-svn-id: https://svn.roundcube.net/trunk@3721 208e9e7b-5314-0410-a742-e7e81cd9613c
2010-05-27- support base URL for inline imagesalec
git-svn-id: https://svn.roundcube.net/trunk@3675 208e9e7b-5314-0410-a742-e7e81cd9613c
2010-05-22- Add support for data URI scheme [RFC2397] (#1486740)alec
git-svn-id: https://svn.roundcube.net/trunk@3651 208e9e7b-5314-0410-a742-e7e81cd9613c
2010-04-21- fix <span>0</span> (#1486645)alec
git-svn-id: https://svn.roundcube.net/trunk@3521 208e9e7b-5314-0410-a742-e7e81cd9613c
2010-02-28- Fix invalid font tags which cause HTML message rendering problems (#1486521)alec
git-svn-id: https://svn.roundcube.net/trunk@3295 208e9e7b-5314-0410-a742-e7e81cd9613c
2009-11-03- fix empty A tag handling (#1486272)alec
git-svn-id: https://svn.roundcube.net/trunk@3092 208e9e7b-5314-0410-a742-e7e81cd9613c
2009-08-19Added # to washtml's regex for safe links (some list digests have tables of ↵ksteinhoff
contents that use internal links). git-svn-id: https://svn.roundcube.net/trunk@2863 208e9e7b-5314-0410-a742-e7e81cd9613c
2009-07-31better solution for HTML washing encoding issueestadtherr
git-svn-id: https://svn.roundcube.net/trunk@2816 208e9e7b-5314-0410-a742-e7e81cd9613c
2009-07-30fix washing of HTML encoded in something other than UTF-8estadtherr
git-svn-id: https://svn.roundcube.net/trunk@2810 208e9e7b-5314-0410-a742-e7e81cd9613c
2009-07-28- Fix displaying of HTML messages with unknown/malformed tags (#1486003)alec
- Some other changes for styled HTML display git-svn-id: https://svn.roundcube.net/trunk@2802 208e9e7b-5314-0410-a742-e7e81cd9613c
2009-07-17- Fix HTML messages output with empty block elements (#1485974)alec
git-svn-id: https://svn.roundcube.net/trunk@2759 208e9e7b-5314-0410-a742-e7e81cd9613c
2009-07-03- Allow WBR tag in HTML message (#1485960)alec
git-svn-id: https://svn.roundcube.net/trunk@2708 208e9e7b-5314-0410-a742-e7e81cd9613c
2009-01-20Treat 'background' attributes the same way as 'src' (another XSS vulnerability)thomasb
git-svn-id: https://svn.roundcube.net/trunk@2245 208e9e7b-5314-0410-a742-e7e81cd9613c
2008-09-17- Smart Tags and NOBR tag support in html messages (#1485363, #1485327)alec
git-svn-id: https://svn.roundcube.net/trunk@1811 208e9e7b-5314-0410-a742-e7e81cd9613c
2008-09-16Allow content of HTML head sections to be processesthomasb
git-svn-id: https://svn.roundcube.net/trunk@1805 208e9e7b-5314-0410-a742-e7e81cd9613c
2008-09-05Respect Content-Location headers in multipart/related messages (#1484946)thomasb
git-svn-id: https://svn.roundcube.net/trunk@1736 208e9e7b-5314-0410-a742-e7e81cd9613c
2008-07-22Reverted r1607. See #1485137 for explanationsthomasb
git-svn-id: https://svn.roundcube.net/trunk@1608 208e9e7b-5314-0410-a742-e7e81cd9613c
2008-07-22#1485137: added 'form' to allowed elements listalec
git-svn-id: https://svn.roundcube.net/trunk@1607 208e9e7b-5314-0410-a742-e7e81cd9613c
2008-07-22Improve HTML sanitization with washtmlthomasb
git-svn-id: https://svn.roundcube.net/trunk@1603 208e9e7b-5314-0410-a742-e7e81cd9613c
2008-06-15#1485097: Re-enable background attribute in HTML messagesalec
git-svn-id: https://svn.roundcube.net/trunk@1544 208e9e7b-5314-0410-a742-e7e81cd9613c
2008-06-07Change meta-charset specififcation in HTML to UTF-8; no need for ↵thomasb
mb_convert_encoding() anymore git-svn-id: https://svn.roundcube.net/trunk@1487 208e9e7b-5314-0410-a742-e7e81cd9613c
2008-06-04Allow <body> tag in HTML messages which will be converted to <div ↵thomasb
class='rcmBody'> git-svn-id: https://svn.roundcube.net/trunk@1470 208e9e7b-5314-0410-a742-e7e81cd9613c
2008-06-04Chech for mb_convert_encoding first because mbstring is optional for ↵thomasb
RoundCube + add some phpdoc git-svn-id: https://svn.roundcube.net/trunk@1469 208e9e7b-5314-0410-a742-e7e81cd9613c
2008-06-03-add convert encoding before html parsingalec
git-svn-id: https://svn.roundcube.net/trunk@1467 208e9e7b-5314-0410-a742-e7e81cd9613c
2008-05-29Replace our crappy html sanitization with the dom-based washtml script + fix ↵thomasb
inline message parts + remove old code + add some doc comments git-svn-id: https://svn.roundcube.net/trunk@1452 208e9e7b-5314-0410-a742-e7e81cd9613c
generated by cgit v1.2.3 (git 2.51.0) at 2026-05-16 09:16:40 +0000