From 2fe9514b6bf40d58c78f5bfb3772813b1bcaef0b Mon Sep 17 00:00:00 2001 From: Laurent Destailleur Date: Fri, 18 Sep 2020 14:01:00 +0200 Subject: [PATCH] Doc --- htdocs/core/lib/functions.lib.php | 1 + 1 file changed, 1 insertion(+) diff --git a/htdocs/core/lib/functions.lib.php b/htdocs/core/lib/functions.lib.php index 4a3bdb9167b..c1c2f1d3724 100644 --- a/htdocs/core/lib/functions.lib.php +++ b/htdocs/core/lib/functions.lib.php @@ -5547,6 +5547,7 @@ function dol_string_onlythesehtmltags($stringtoclean, $cleanalsosomestyles = 1, if ($removeclassattribute) { $stringtoclean = preg_replace('/(<[^>]+)\s+class=((["\']).*?\\3|\\w*)/i', '\\1', $stringtoclean); } + // TODO Remove '/href=("|\'|)javascript/' string ? $temp = strip_tags($stringtoclean, $allowed_tags_string);