Open paxter opened 2 years ago
If there are valid hex characters in an url, the whole link will be removed from the output. Valid links shouldn't be removed.
$antiXss = new AntiXSS(); $text = "<a href='https://example.com?34167-%DCbersicht'>text</a>"; echo $antiXss->xss_clean($text);
Output
<a href="">text</a>
No idea.
Let me know if anything further is needed.
What is this feature about (expected vs actual behaviour)?
If there are valid hex characters in an url, the whole link will be removed from the output. Valid links shouldn't be removed.
How can I reproduce it?
Output
Does it take minutes, hours or days to fix?
No idea.
Any additional information?
Let me know if anything further is needed.