archive/php-src
1
0
Fork 0
mirror of https://github.com/php/php-src.git synced 2025-08-20 01:14:28 +02:00
Code Issues Projects Releases Packages Wiki Activity Actions 2

MFH: Fix bug when < is used within attribute.

Browse source
This commit is contained in:
Scott MacVicar 2008-07-15 14:46:12 +00:00
parent 05f3ed67d4
commit a9d60c014b
2 changed files with 44 additions and 0 deletions
Download patch file Download diff file Expand all files Collapse all files

3
ext/standard/string.c
View file

@ -4249,6 +4249,9 @@ PHPAPI size_t php_strip_tags_ex(char *rbuf, int len, int *stateptr, char *allow,
case '\0': case '\0':
break; break;
case '<': case '<':
if (in_q) {
break;
}
if (isspace(*(p + 1)) && !allow_tag_spaces) { if (isspace(*(p + 1)) && !allow_tag_spaces) {
goto reg_char; goto reg_char;
} }

41
ext/standard/tests/strings/strip_tags_variation11.phpt Normal file
View file

@ -0,0 +1,41 @@
--TEST--
Test strip_tags() function : obscure values within attributes
--INI--
short_open_tag = on
--FILE--
<?php
echo "*** Testing strip_tags() : obscure functionality ***\n";
// array of arguments
$string_array = array (
'hello <img title="<"> world',
'hello <img title=">"> world',
'hello <img title=">_<"> world',
"hello <img title='>_<'> world"
);
// Calling strip_tags() with default arguments
// loop through the $string_array to test strip_tags on various inputs
$iteration = 1;
foreach($string_array as $string)
{
echo "-- Iteration $iteration --\n";
var_dump( strip_tags($string) );
$iteration++;
}
echo "Done";
?>
--EXPECTF--
*** Testing strip_tags() : obscure functionality ***
-- Iteration 1 --
string(12) "hello world"
-- Iteration 2 --
string(12) "hello world"
-- Iteration 3 --
string(12) "hello world"
-- Iteration 4 --
string(12) "hello world"
Done