Merge branch 'security' into 3.1-stable

author: Andrey Andreev <narf@devilix.net> 2017-01-09 14:18:25 +0100
committer: Andrey Andreev <narf@devilix.net> 2017-01-09 14:18:25 +0100
commit: e5b31fce3e74c9b28f9fb9a904b4e2f29873293d (patch)
tree: 32a66c3a806f34b2c77c96c432f551b27c756e6e /tests/codeigniter
parent: e898e565c60617dbc43186c14018519d8ef05042 (diff)
parent: 61fd92498db72bc511effa8c15274596afbb5010 (diff)
1 files changed, 5 insertions, 0 deletions
diff --git a/tests/codeigniter/core/Security_test.php b/tests/codeigniter/core/Security_test.php
index cbf0285ec..4c54ec9fa 100644
--- a/tests/codeigniter/core/Security_test.php
+++ b/tests/codeigniter/core/Security_test.php
@@ -154,6 +154,11 @@ class Security_test extends CI_TestCase {
 			'<img src="b on=">on=">"x onerror="alert&#40;1&#41;">',
 			$this->security->xss_clean('<img src="b on="<x">on=">"x onerror="alert(1)">')
 		);
+
+		$this->assertEquals(
+			"\n>&lt;!-\n<b d=\"'e><iframe onload=alert&#40;1&#41; src=x>\n<a HREF=\">\n",
+			$this->security->xss_clean("\n><!-\n<b\n<c d=\"'e><iframe onload=alert(1) src=x>\n<a HREF=\"\">\n")
+		);
 	}
 
 	// --------------------------------------------------------------------
author	Andrey Andreev <narf@devilix.net>	2017-01-09 14:18:25 +0100
committer	Andrey Andreev <narf@devilix.net>	2017-01-09 14:18:25 +0100
commit	e5b31fce3e74c9b28f9fb9a904b4e2f29873293d (patch)
tree	32a66c3a806f34b2c77c96c432f551b27c756e6e /tests/codeigniter
parent	e898e565c60617dbc43186c14018519d8ef05042 (diff)
parent	61fd92498db72bc511effa8c15274596afbb5010 (diff)