Fix: removed unneeded HTML escaping

author Michael <heluecht@pirati.ca>

Tue, 7 Jan 2020 22:00:39 +0000 (22:00 +0000)

committer Michael <heluecht@pirati.ca>

Tue, 7 Jan 2020 22:00:39 +0000 (22:00 +0000)
author Michael <heluecht@pirati.ca>
Tue, 7 Jan 2020 22:00:39 +0000 (22:00 +0000)
committer Michael <heluecht@pirati.ca>
Tue, 7 Jan 2020 22:00:39 +0000 (22:00 +0000)
diff --git a/src/Content/Text/HTML.php b/src/Content/Text/HTML.php

index a25883eb162d10be4a7da539bcff0981834ba222..557e737096c5082d9d6b0dc89b95b58762d49cdc 100644 (file)
--- a/src/Content/Text/HTML.php
+++ b/src/Content/Text/HTML.php
@@ -336,8 +336,6 @@ class HTML
  
                 $message = html_entity_decode($message, ENT_QUOTES, 'UTF-8');
  
-               $message = str_replace(["<"], ["&lt;"], $message);
-
                 // remove quotes if they don't make sense
                 $message = preg_replace('=\[/quote\][\s]*\[quote\]=i', "\n", $message);
  
diff --git a/src/Protocol/DFRN.php b/src/Protocol/DFRN.php

index 798f607927d47fcb020d2c2267305f8768c8f0d7..2202331b12b30291163c86fcb3ca1872cca58df4 100644 (file)
--- a/src/Protocol/DFRN.php
+++ b/src/Protocol/DFRN.php
@@ -2365,7 +2365,7 @@ class DFRN
                 $item["body"] = XML::getFirstNodeValue($xpath, "dfrn:env/text()", $entry);
                 $item["body"] = str_replace([' ',"\t","\r","\n"], ['','','',''], $item["body"]);
                 // make sure nobody is trying to sneak some html tags by us
-               $item["body"] = Strings::escapeTags(Strings::base64UrlDecode($item["body"]));
+               $item["body"] = Strings::base64UrlDecode($item["body"]);
  
                 $item["body"] = BBCode::limitBodySize($item["body"]);
author	Michael <heluecht@pirati.ca>
	Tue, 7 Jan 2020 22:00:39 +0000 (22:00 +0000)
committer	Michael <heluecht@pirati.ca>
	Tue, 7 Jan 2020 22:00:39 +0000 (22:00 +0000)
src/Content/Text/HTML.php		patch \| blob \| history
src/Protocol/DFRN.php		patch \| blob \| history