? framework/Text_Filter/run-tests.log Index: framework/Text_Filter/Filter/xss.php =================================================================== RCS file: /repository/framework/Text_Filter/Filter/xss.php,v retrieving revision 1.15 diff -u -r1.15 xss.php --- framework/Text_Filter/Filter/xss.php 19 Apr 2008 20:12:29 -0000 1.15 +++ framework/Text_Filter/Filter/xss.php 19 Aug 2008 22:03:02 -0000 @@ -96,7 +96,7 @@ $patterns[$preg] = '\1\8' . $this->_params['replace']; /* Get all on="bar()". NEVER allow these. */ - $patterns['/([\s"\']+' . + $patterns['/([\s"\'\/]+' . '(o|�*79;?|�*4f;?|�*111;?|�*6f;?)' . '(n|�*78;?|�*4e;?|�*110;?|�*6e;?)' . '\w+)[^=a-z0-9"\'>]*=/i'] = '\1' . $this->_params['replace'] . '='; Index: framework/Text_Filter/tests/xss.phpt =================================================================== RCS file: /repository/framework/Text_Filter/tests/xss.phpt,v retrieving revision 1.2 diff -u -r1.2 xss.phpt --- framework/Text_Filter/tests/xss.phpt 27 Dec 2007 16:43:04 -0000 1.2 +++ framework/Text_Filter/tests/xss.phpt 19 Aug 2008 22:03:02 -0000 @@ -212,6 +212,8 @@ xss85.html PT SRC="http://ha.ckers.org/a.js"> +xss97.html + xss98.html Index: framework/Text_Filter/tests/xss97.html =================================================================== RCS file: framework/Text_Filter/tests/xss97.html diff -N framework/Text_Filter/tests/xss97.html --- /dev/null 1 Jan 1970 00:00:00 -0000 +++ framework/Text_Filter/tests/xss97.html 19 Aug 2008 22:03:02 -0000 @@ -0,0 +1 @@ +