Mirrors/roundcubemail
2
0
Fork 0
mirror of https://github.com/roundcube/roundcubemail.git synced 2026-03-03 14:54:01 +01:00
Code Issues Packages Projects Releases Wiki Activity
4,806 Commits 72 Branches 205 Tags
c0806c6dfbe21d466bfd9344cd2caeef0ba7cdfa
Commit Graph

38 Commits

Author SHA1 Message Date
thomascube
f38dfc294a Accept absolute urls without protocol 2011-12-22 10:32:22 +00:00
thomascube
98c2d69acf Be more strict in style attribute filtering 2011-12-10 01:50:03 +00:00
thomascube
2b017e7f79 Allow clean background:url(...) styles in safe mode. This will make Roundcube pass the Email Standards Acid Test 2011-12-09 21:13:54 +00:00
alecpl
af4b3be87d - Fix handling of empty <U> tags in HTML messages (#1488225) 2011-11-30 07:33:33 +00:00
alecpl
2eeb128d06 - Fix washing styles with quoted values e.g. font-family 2011-11-15 16:47:40 +00:00
alecpl
c1fcd1b838 - Fix handling of HTML form elements in messages (#1485137) 2011-11-15 12:06:58 +00:00
alecpl
e4d0947550 - Fix invalid comments handling (see example message in #1487915) 2011-05-16 07:11:02 +00:00
alecpl
968754b09e - Fix regression in html conditional comments handling by washtml class 2011-04-19 08:23:31 +00:00
thomascube
b1d31eea94 Fix stripping invalid comments. Changes from r4483 also stripped entire CSS blocks packed in comments 2011-02-09 16:06:20 +00:00
alecpl
9ebac6616d - Fix handling of invalid HTML comments in messages (#1487759) 2011-02-03 11:52:38 +00:00
alecpl
4d268b1fae - Don't return empty I and B tags in short form 2010-12-23 17:16:03 +00:00
alecpl
1d3596dd61 - Don't allow short form of empty <strong> tag 2010-08-03 11:48:24 +00:00
alecpl
be6f3a9d28 - Improve parsing of styled empty tags in HTML messages (#1486812) 2010-06-23 06:57:45 +00:00
alecpl
a0d29e518f - Fix RFC2397 handling in wash_style() 2010-06-07 06:47:14 +00:00
alecpl
b6f04054d1 - support base URL for inline images 2010-05-27 13:34:58 +00:00
alecpl
0b7f3a8ab2 - Add support for data URI scheme [RFC2397] (#1486740) 2010-05-22 07:27:15 +00:00
alecpl
9ef5fa51fb - fix <span>0</span> (#1486645) 2010-04-21 13:56:53 +00:00
alecpl
a72ad65724 - Fix invalid font tags which cause HTML message rendering problems (#1486521) 2010-02-28 08:07:45 +00:00
alecpl
7435e3bc32 - fix empty A tag handling (#1486272) 2009-11-03 17:41:54 +00:00
svncommit
e98f249172 Added # to washtml's regex for safe links (some list digests have tables of contents that use internal links). 2009-08-19 18:33:26 +00:00
svncommit
5f8d31f9be better solution for HTML washing encoding issue 2009-07-31 02:58:31 +00:00
svncommit
659672ebf9 fix washing of HTML encoded in something other than UTF-8 2009-07-30 04:07:26 +00:00
alecpl
2337a82f72 - Fix displaying of HTML messages with unknown/malformed tags (#1486003) 
- Some other changes for styled HTML display
 2009-07-28 08:41:50 +00:00
alecpl
503e019a56 - Fix HTML messages output with empty block elements (#1485974) 2009-07-17 07:32:59 +00:00
alecpl
f7fff8f682 - Allow WBR tag in HTML message (#1485960) 2009-07-03 18:36:09 +00:00
thomascube
4cc74f7269 Treat 'background' attributes the same way as 'src' (another XSS vulnerability) 2009-01-20 16:28:33 +00:00
alecpl
7f62581c10 - Smart Tags and NOBR tag support in html messages (#1485363, #1485327) 2008-09-17 07:47:32 +00:00
thomascube
a47acc56c6 Allow content of HTML head sections to be processes 2008-09-16 13:06:20 +00:00
thomascube
c505e59a6d Respect Content-Location headers in multipart/related messages (#1484946) 2008-09-05 09:29:06 +00:00
thomascube
d368a68ed7 Reverted r1607. See #1485137 for explanations 2008-07-22 17:13:47 +00:00
alecpl
4897adcbd4 #1485137: added 'form' to allowed elements list 2008-07-22 10:38:43 +00:00
thomascube
21e724153e Improve HTML sanitization with washtml 2008-07-22 08:01:42 +00:00
alecpl
18ebb902d5 #1485097: Re-enable background attribute in HTML messages 2008-06-15 11:23:18 +00:00
thomascube
350459486d Change meta-charset specififcation in HTML to UTF-8; no need for mb_convert_encoding() anymore 2008-06-07 12:51:21 +00:00
thomascube
a8755664af Allow <body> tag in HTML messages which will be converted to <div class='rcmBody'> 2008-06-04 09:40:17 +00:00
thomascube
65cc1c196f Chech for mb_convert_encoding first because mbstring is optional for RoundCube + add some phpdoc 2008-06-04 09:13:06 +00:00
alecpl
68217c548a -add convert encoding before html parsing 2008-06-03 17:07:53 +00:00
thomascube
45f56c1c40 Replace our crappy html sanitization with the dom-based washtml script + fix inline message parts + remove old code + add some doc comments 2008-05-29 16:10:42 +00:00