Commit 1776eadc authored by Steven Wittens's avatar Steven Wittens

#103563: Restore removing of HTML comments in filter_xss()

parent 9f8ef08c
......@@ -1278,7 +1278,7 @@ function filter_xss($string, $allowed_tags = array('a', 'em', 'strong', 'cite',
return preg_replace_callback('%
(
<(?=[^a-zA-Z/]) # a lone <
<(?=[^a-zA-Z!/]) # a lone <
| # or
<[^>]*.(>|$) # a string that starts with a <, up until the > or the end of the string
| # or
......
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment