Closed (fixed)
Project:
ecard
Version:
6.x-1.1
Component:
Code
Priority:
Normal
Category:
Bug report
Assigned:
Reporter:
Created:
6 Feb 2009 at 17:07 UTC
Updated:
27 Feb 2009 at 19:10 UTC
Jump to comment: Most recent file
The message content does not seem to get passed through any filters.
| Comment | File | Size | Author |
|---|---|---|---|
| #2 | ecard-370273-2.patch | 486 bytes | tom_buytaert |
| #1 | ecard-370273-1.patch | 384 bytes | tom_buytaert |
Comments
Comment #1
tom_buytaert commentedI attached a patch, in which the message is sent through filter_xss()
Comment #2
tom_buytaert commentedSame patch, but this one also allows the use of images.
Or should check_markup() be used instead of filter_xss() ?
Comment #3
kars-t commentedHi thanks for the patch. In D5 I used check_markup but with always the default filter applied. For the next D6 patch I will alter the data structure and apply check_markup() sothe user can use any allowed filters to his role. I will do this probably next week.
Comment #4
tom_buytaert commentedOkay, thanks.
Great module, by the way!
Comment #5
kars-t commentedLatest dev fixes this. Please test it.