summaryrefslogtreecommitdiffstats
path: root/tests/codeigniter/core/Security_test.php
diff options
context:
space:
mode:
authorAndrey Andreev <narf@devilix.net>2014-03-18 22:08:59 +0100
committerAndrey Andreev <narf@devilix.net>2014-03-18 22:08:59 +0100
commit46d2072e5ce0c13f3be2bd909d76eba37964740f (patch)
tree6a022cbd743aa08c9fb79a5fcca9de371f41b574 /tests/codeigniter/core/Security_test.php
parentebb3aa0edde1efd4829a3ad8dbe0eeac970794cb (diff)
More xss_clean() improvements
Issue described in https://github.com/EllisLab/CodeIgniter/issues/2667#issuecomment-37980030 + a false positive
Diffstat (limited to 'tests/codeigniter/core/Security_test.php')
-rw-r--r--tests/codeigniter/core/Security_test.php2
1 files changed, 1 insertions, 1 deletions
diff --git a/tests/codeigniter/core/Security_test.php b/tests/codeigniter/core/Security_test.php
index 14e042ee2..d4d6be4b5 100644
--- a/tests/codeigniter/core/Security_test.php
+++ b/tests/codeigniter/core/Security_test.php
@@ -74,7 +74,7 @@ class Security_test extends CI_TestCase {
public function test_xss_clean_entity_double_encoded()
{
$input = '<a href="&#38&#35&#49&#48&#54&#38&#35&#57&#55&#38&#35&#49&#49&#56&#38&#35&#57&#55&#38&#35&#49&#49&#53&#38&#35&#57&#57&#38&#35&#49&#49&#52&#38&#35&#49&#48&#53&#38&#35&#49&#49&#50&#38&#35&#49&#49&#54&#38&#35&#53&#56&#38&#35&#57&#57&#38&#35&#49&#49&#49&#38&#35&#49&#49&#48&#38&#35&#49&#48&#50&#38&#35&#49&#48&#53&#38&#35&#49&#49&#52&#38&#35&#49&#48&#57&#38&#35&#52&#48&#38&#35&#52&#57&#38&#35&#52&#49">Clickhere</a>';
- $this->assertEquals('<a 1>Clickhere</a>', $this->security->xss_clean($input));
+ $this->assertEquals('<a >Clickhere</a>', $this->security->xss_clean($input));
}
// --------------------------------------------------------------------