Menu
▾
▴
[Phpbb-checkins] CVS: phpBB2/includes bbcode.php,1.37,1.38
|
From: Jonathan H. <the...@us...> - 2002-04-24 15:00:36
|
Update of /cvsroot/phpbb/phpBB2/includes
In directory usw-pr-cvs1:/tmp/cvs-serv31085/includes
Modified Files:
bbcode.php
Log Message:
Fix for "security vulnerability" in img tag
Index: bbcode.php
===================================================================
RCS file: /cvsroot/phpbb/phpBB2/includes/bbcode.php,v
retrieving revision 1.37
retrieving revision 1.38
diff -C2 -r1.37 -r1.38
*** bbcode.php 20 Apr 2002 00:22:28 -0000 1.37
--- bbcode.php 24 Apr 2002 15:00:33 -0000 1.38
***************
*** 283,287 ****
// [img]image_url_here[/img] code..
! $text = preg_replace("#\[img\](([a-z]+?)://([^ \n\r]+?))\[/img\]#si", "[img:$uid]\\1[/img:$uid]", $text);
// Remove our padding from the string..
--- 283,287 ----
// [img]image_url_here[/img] code..
! $text = preg_replace("#\[img\](([a-z]+?)://([^ \"\n\r]+?))\[/img\]#si", "[img:$uid]\\1[/img:$uid]", $text);
// Remove our padding from the string..
***************
*** 772,774 ****
! ?>
\ No newline at end of file
--- 772,774 ----
! ?>
|
