From c04f0fc794c503ca957257f29fc6fc2bed7bd6fa Mon Sep 17 00:00:00 2001
From: Derek Jones <derek.jones@ellislab.com>
Date: Wed, 4 Jun 2008 18:20:18 +0000
Subject: emendation to on* event handler removal

---
 system/libraries/Input.php | 5 ++---
 1 file changed, 2 insertions(+), 3 deletions(-)

(limited to 'system')

diff --git a/system/libraries/Input.php b/system/libraries/Input.php
index b111108eb..c2c28fb15 100644
--- a/system/libraries/Input.php
+++ b/system/libraries/Input.php
@@ -757,7 +757,7 @@ class CI_Input {
 		 * but it's unlikely to be a problem.
 		 *
 		 */
-		$event_handlers = array('xmlns');
+		$event_handlers = array('on\w*','xmlns');
 
 		if ($is_image === TRUE)
 		{
@@ -768,8 +768,7 @@ class CI_Input {
 			unset($event_handlers[array_search('xmlns', $event_handlers)]);
 		}
 		
-		$str = preg_replace("#<([^><]+)((?=on\w*)|".implode('|', $event_handlers).")(\s*=\s*[^><]*)([><]*)#i", "<\\1\\4", $str);
-
+		$str = preg_replace("#<([^><]+)(".implode('|', $event_handlers).")(\s*=\s*[^><]*)([><]*)#i", "<\\1\\4", $str);
 		/*
 		 * Sanitize naughty HTML elements
 		 *
-- 
cgit v1.2.3-24-g4f1b