rainbownapkin/fore.st
1
0
Fork 0
Code Issues 13 Pull requests Projects Releases Packages Wiki Activity Actions

Fix behavior of chat filter XSS

Browse source
This commit is contained in:
calzoneman 2013-09-12 13:03:04 -05:00
parent 9d445b8ffd
commit 408f6626bb
2 changed files with 7 additions and 2 deletions
Download patch file Download diff file Expand all files Collapse all files

5
lib/channel.js
View file

@ -1853,9 +1853,10 @@ Channel.prototype.tryUpdateFilter = function(user, f) {
var re = f.source;
var flags = f.flags;
// Temporary fix
f.replace = f.replace.replace("style", "stlye");
// 2013-09-12 Temporary my ass
f.replace = f.replace.replace(/style/g, "stlye");
f.replace = sanitize(f.replace).xss();
f.replace = f.replace.replace("stlye", "style");
f.replace = f.replace.replace(/stlye/g, "style");
try {
new RegExp(re, flags);
}