public/tt-rss
1
0
Fork 0
mirror of https://git.tt-rss.org/git/tt-rss.git synced 2025-12-15 11:15:57 +00:00
Code Issues Releases Wiki Activity

sanitize: force strip unnecessary data outside of <body>...</body> tags generated by DOMDocument::saveHTML()

Browse Source
This commit is contained in:
Andrew Dolgov
2016-04-29 21:59:34 +03:00
parent 977cea1438
commit 42f78188d0
1 changed files with 8 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

9
include/functions2.php
View File

@@ -1034,7 +1034,14 @@
$res = $doc->saveHTML(); $res = $doc->saveHTML();
return $res; /* strip everything outside of <body>...</body> */
$res_frag = array();
if (preg_match('/<body>(.*)<\/body>/is', $res, $res_frag)) {
return $res_frag[1];
} else {
return $res;
}
} }
function strip_harmful_tags($doc, $allowed_elements, $disallowed_attributes) { function strip_harmful_tags($doc, $allowed_elements, $disallowed_attributes) {