diff options
| -rw-r--r-- | include/functions2.php | 4 |
1 files changed, 4 insertions, 0 deletions
diff --git a/include/functions2.php b/include/functions2.php index aab73d342..dceea507e 100644 --- a/include/functions2.php +++ b/include/functions2.php @@ -1064,6 +1064,10 @@ array_push($attrs_to_remove, $attr); } + if ($attr->nodeName == 'href' && stripos($attr->value, 'javascript:') === 0) { + array_push($attrs_to_remove, $attr); + } + if (in_array($attr->nodeName, $disallowed_attributes)) { array_push($attrs_to_remove, $attr); } |