summaryrefslogtreecommitdiffstats
path: root/system
diff options
context:
space:
mode:
authorAndrey Andreev <narf@devilix.net>2015-09-14 10:11:20 +0200
committerAndrey Andreev <narf@devilix.net>2015-09-14 10:11:20 +0200
commit70f60d07253d301ec62789f78587db0dac826a27 (patch)
treede4625fd544b44795a701df74c27358df3c50f24 /system
parentbc78748b24ec2d49f0218fa701d1e95259b41187 (diff)
Move _remove_evil_attributes() call
Diffstat (limited to 'system')
-rw-r--r--system/core/Security.php7
1 files changed, 3 insertions, 4 deletions
diff --git a/system/core/Security.php b/system/core/Security.php
index ade77491d..dd3b2c8f0 100644
--- a/system/core/Security.php
+++ b/system/core/Security.php
@@ -480,12 +480,8 @@ class CI_Security {
}
}
while ($original !== $str);
-
unset($original);
- // Remove evil attributes such as style, onclick and xmlns
- $str = $this->_remove_evil_attributes($str, $is_image);
-
/*
* Sanitize naughty HTML elements
*
@@ -518,6 +514,9 @@ class CI_Security {
while ($old_str !== $str);
unset($old_str);
+ // Remove evil attributes such as style, onclick and xmlns
+ $str = $this->_remove_evil_attributes($str, $is_image);
+
/*
* Sanitize naughty scripting elements
*