Skip to content
Snippets Groups Projects
Commit 4871338c authored by Torben Hansen's avatar Torben Hansen Committed by Georg Ringer
Browse files

[BUGFIX] Accept JS spam protected email addresses 

When TYPO3 is configured to spam protect email
addresses using an offset, then the HTML sanitizer
introduced in #94375 will remove the generated
JavaScript in the href link attribute.

This change makes the HTML sanitizer aware of the
`javascript:linkTo_UnCryptMailto` pattern for href
attribute.

Resolves: #94776
Releases: master, 11.3, 10.4, 9.5
Change-Id: If5f4ab22a686274401390a66b580a24e6d5a8f0c
Reviewed-on: https://review.typo3.org/c/Packages/TYPO3.CMS/+/70411


Tested-by: default avatarOliver Hader <oliver.hader@typo3.org>
Tested-by: default avatarcore-ci <typo3@b13.com>
Tested-by: default avatarOliver Bartsch <bo@cedev.de>
Tested-by: default avatarGeorg Ringer <georg.ringer@gmail.com>
Reviewed-by: default avatarOliver Hader <oliver.hader@typo3.org>
Reviewed-by: default avatarOliver Bartsch <bo@cedev.de>
Reviewed-by: default avatarGeorg Ringer <georg.ringer@gmail.com>
parent 85342760
Branches
Tags
Hide whitespace changes
Inline Side-by-side
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment