Support for Drupal 7 is ending on 5 January 2025—it’s time to migrate to Drupal 10! Learn about the many benefits of Drupal 10 and find migration tools in our resource center.
During our testing we found that when the caption is empty for a lightframe window the module still sends the empty string for XSS filtering. We can reduce this callout with this patch.
Comment | File | Size | Author |
---|---|---|---|
#1 | reduce_filterXSS_callout_for_empty_caption-1298354-1.patch | 726 bytes | gitesh.koli |
Comments
Comment #1
gitesh.koli CreditAttribution: gitesh.koli commentedPatch attached.
Comment #2
c960657 CreditAttribution: c960657 commentedI added this suggestion to my patch for #937908: Filter xss.