[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: A text/html message which seems to sneak an <img src> off-site ref past mhonarc
On December 2, 2001 at 00:06, Jason Molenda wrote:
> As I understand 2.5.1's HTML defanging code, I think this message
> is showing a bug. I haven't looked into this code path in detail,
> but I wanted to pass it along anyway in case something jumps out
> at someone.
The images that snuck through are the ones where the <img src> tag
did not use quotes to delimit the value of the SRC attribute.
--ewh
[Index of Archives]
[Bugtraq]
[Yosemite News]
[Mhonarc Home]