Welcome to mirror list, hosted at ThFree Co, Russian Federation.

github.com/roundcube/roundcubemail.git - Unnamed repository; edit this file 'description' to name the repository.
summaryrefslogtreecommitdiff
path: root/tests
AgeCommit message (Expand)Author
2020-08-09Fix cross-site scripting (XSS) via HTML messages with malicious svg or math c...Aleksander Machniak
2020-07-03Fix cross-site scripting (XSS) via HTML messages with malicious svg/namespaceAleksander Machniak
2019-08-27Fix bug where it was possible to bypass href URI check with data:application/...1.3.10Aleksander Machniak
2019-08-27Fix security issue where it was possible to bypass the CSS jail in HTML messa...Aleksander Machniak
2019-08-27Fix bug where some strict remote URIs in url() style were unintentionally blo...Aleksander Machniak
2019-08-27Fix security issue where it was possible to bypass the position:fixed CSS che...Aleksander Machniak
2019-05-19Update changelog, add some tests for rcube_utils::parse_host()Aleksander Machniak
2019-05-19Fix bug where bold/strong text was converted to upper-case on html-to-text co...Aleksander Machniak
2019-01-04Fix regression in vcard parserAleksander Machniak
2018-12-21Fix handling of empty entries in vCard import (#6564)Aleksander Machniak
2018-09-27Fix bug where valid content between HTML comments could have been skipped in ...Aleksander Machniak
2018-08-24Add test for #6410Aleksander Machniak
2018-06-22Fix bug where some HTML comments could have been malformed by HTML parser (#6...Aleksander Machniak
2018-05-05Fix bug where some escape sequences in html styles could bypass security checksAleksander Machniak
2018-04-10Fix bug where usernames without domain part could be malformed or converted t...Aleksander Machniak
2018-03-18Fix parsing date strings (e.g. from a Date: mail header) with comments (#6216)Aleksander Machniak
2018-03-09Fix bug where some unix timestamps were not handled correctly by rcube_utils:...Aleksander Machniak
2018-02-14Fix bug in remote content blocking on HTML image and style tags (#6178)Aleksander Machniak
2017-11-08Fix mangled non-ASCII characters in links in HTML messages (#6028)Aleksander Machniak
2017-10-01Fix (again) bug where image data URIs in css style were treated as evil/remot...Aleksander Machniak
2017-08-23Modify links in html messages during Washtml DOM traversalThomas Bruederli
2017-08-23Escape textarea contents in WashtmlThomas Bruederli
2017-06-28Fix bug where HTML messages with @media styles could moddify style of page bo...Aleksander Machniak
2017-05-05Fix bug where comment notation within style tag would cause the whole style t...Aleksander Machniak
2017-04-22Added test for rcube_db::parse_dsn()Aleksander Machniak
2017-03-22Add support for DelSp=Yes messages (#5702)dfukagaw28
2017-03-11Add tests for XSS vulnerabilities in style tagsThomas Bruederli
2017-03-06Skip iconv for problematic ISO-2022-JP strings (#5668)Shin Kojima
2017-01-07Fix bug where external content in src attribute of input/video tags was not s...Aleksander Machniak
2017-01-07Fix bug where image data URIs in css style were treated as evil/remote in mai...Aleksander Machniak
2016-12-02Identicon pluginAleksander Machniak
2016-11-13replace old trac links (#5514)JohnDoh
2016-08-20Merge branch 'dev/drop-legacy-browsers'Aleksander Machniak
2016-08-12Make html::parse_attrib_string() more robustAleksander Machniak
2016-08-04Removed legacy_browsr pluginAleksander Machniak
2016-07-31Merge remote-tracking branch 'upstream/master'Aleksander Machniak
2016-07-29Better time handling in rcube_utils::clean_datestr()Aleksander Machniak
2016-07-29Managesieve: Fix parsing of vacation date-time with non-default date_format (...Aleksander Machniak
2016-07-21Fix handling of blockquote tags with mixed case on html2text conversion (#5363)Aleksander Machniak
2016-07-18Fix MathML test on older PHP versionsAleksander Machniak
2016-07-17Support MathML in HTML message preview (#5182)Aleksander Machniak
2016-05-29Wash position:fixed style in HTML mail for better security (#5264)Aleksander Machniak
2016-05-08Small performance optimizationAleksander Machniak
2016-05-08Add some more tests for HREF attribute washingAleksander Machniak
2016-05-06Fix XSS issue in href attribute on area tag (#5240, #5241)Aleksander Machniak
2016-04-12Small code style improvementsAleksander Machniak
2016-04-12Fix converting mail addresses with @www. into mailto links (#5197)Aleksander Machniak
2016-01-16Improved SVG cleanup codeAleksander Machniak
2015-11-18Fix rcube_utils::words_match() to work with mixed/invalid/binary content (T844)Aleksander Machniak
2015-11-05Fix HTML sanitizer to skip <!-- node type X --> in output (#1490583)Aleksander Machniak
generated by cgit v1.2.3 (git 2.25.1) at 2024-08-15 11:45:30 +0300