jeff377 / owaspantisamy

Automatically exported from code.google.com/p/owaspantisamy
0 stars 0 forks source link

font-family filter doesn't allow font names surrounded in "quotes" #55

Closed GoogleCodeExporter closed 8 years ago

GoogleCodeExporter commented 8 years ago
Given a style tag containing:

body {
font-family: "Arial Unicode MS" , Arial , sans-serif;
}

It seems to convert it into:

body {
font-family: Arial Unicode MS , Arial , sans-serif;
}

However, browsers will not interpret the second the same 
as the first.

So, I made a patch to preserve quotes around the font family names (see 
attached).

As a side note, I had previously reported this to the wrong project and 
posted the same patch here: http://code.google.com/p/owasp-esapi-
java/issues/detail?id=29

Original issue reported on code.google.com by dob...@gmail.com on 14 Oct 2009 at 10:45

Attachments:

GoogleCodeExporter commented 8 years ago
Look for this to be fixed by the next minor release.

Original comment by arshan.d...@gmail.com on 15 Oct 2009 at 4:03

GoogleCodeExporter commented 8 years ago
This has been integrated into the baseline. Thanks for the detailed report and 
patch!

Original comment by arshan.d...@gmail.com on 24 Nov 2009 at 3:58