fanbinit/rhymix
1
0
Fork 0
mirror of https://github.com/Lastorder-DC/rhymix.git synced 2026-04-13 07:22:13 +09:00
Code Issues Projects Releases Packages Wiki Activity

issue 2239 Object, Embed, Iframe source allow by white list

Browse source 
git-svn-id: http://xe-core.googlecode.com/svn/branches/1.5.3.2@11024 201d5d3c-b55e-5fd7-737f-ddc643e51545
This commit is contained in:
ovclas 2012-08-13 02:19:17 +00:00
parent 8e64ac6e2b
commit 927c944ff3
25 changed files with 1044 additions and 2 deletions
Download patch file Download diff file Expand all files Collapse all files

5
modules/document/document.controller.php
View file

@ -408,7 +408,10 @@ class documentController extends document {
}
}
// Remove iframe and script if not a top adminisrator in the session.
if($logged_info->is_admin != 'Y') $obj->content = removeHackTag($obj->content);
if($logged_info->is_admin != 'Y')
{
$obj->content = removeHackTag($obj->content);
}
// if temporary document, regdate is now setting
if($source_obj->get('status') == $this->getConfigStatus('temp')) $obj->regdate = date('YmdHis');