Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

False positive in string #60

Closed
Anyqax opened this issue Aug 10, 2020 · 2 comments
Closed

False positive in string #60

Anyqax opened this issue Aug 10, 2020 · 2 comments
Assignees
@voku
Labels
bug

Comments

@Anyqax
Copy link

Anyqax commented Aug 10, 2020

What is this feature about (expected vs actual behaviour)?

$antiXSS->isXssFound() should be false for string '<2€'

How can I reproduce it?

$antiXSS = new \voku\helper\AntiXSS();
$antiXSS->xss_clean('<2€');

$antiXSS->isXssFound() === true

Does it take minutes, hours or days to fix?

no clue? :)
@issue-label-bot issue-label-bot bot added the bug label Aug 10, 2020
@issue-label-bot
Copy link

Issue-Label Bot is automatically applying the label bug to this issue, with a confidence of 0.70. Please mark this comment with 👍 or 👎 to give our bot feedback!

Links: app homepage, dashboard and code for this bot.

@voku voku self-assigned this Aug 13, 2020
voku added a commit that referenced this issue Aug 23, 2020
@voku
[+]: fix issue #60
5750133 
+ optimized protection against HTML "script" tag stripping evasion
@voku
Copy link
Owner

voku commented Aug 23, 2020

Fixed in version 4.1.27

@voku voku closed this as completed Aug 23, 2020
@timmit-nl timmit-nl mentioned this issue Aug 31, 2020
Closed
@timmit-nl timmit-nl mentioned this issue May 20, 2021
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@voku voku

Labels
bug
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@voku @Anyqax