Support for Drupal 7 is ending on 5 January 2025—it’s time to migrate to Drupal 10! Learn about the many benefits of Drupal 10 and find migration tools in our resource center.The message content does not seem to get passed through any filters.
| Comment | File | Size | Author |
|---|---|---|---|
| #2 | ecard-370273-2.patch | 486 bytes | tom_buytaert |
| #1 | ecard-370273-1.patch | 384 bytes | tom_buytaert |
Comments
Comment #1
tom_buytaert CreditAttribution: tom_buytaert commentedI attached a patch, in which the message is sent through filter_xss()
Comment #2
tom_buytaert CreditAttribution: tom_buytaert commentedSame patch, but this one also allows the use of images.
Or should check_markup() be used instead of filter_xss() ?
Comment #3
Kars-T CreditAttribution: Kars-T commentedHi thanks for the patch. In D5 I used check_markup but with always the default filter applied. For the next D6 patch I will alter the data structure and apply check_markup() sothe user can use any allowed filters to his role. I will do this probably next week.
Comment #4
tom_buytaert CreditAttribution: tom_buytaert commentedOkay, thanks.
Great module, by the way!
Comment #5
Kars-T CreditAttribution: Kars-T commentedLatest dev fixes this. Please test it.