run markdown through html purifier for those who insist on mixing html with markdown.

This commit is contained in:
redmatrix 2015-11-11 15:09:22 -08:00
parent 75c10eaff5
commit bd3d323849
2 changed files with 3 additions and 2 deletions

View file

@ -473,8 +473,9 @@ function item_post(&$a) {
require_once('include/text.php');
if($uid && $uid == $profile_uid && feature_enabled($uid,'markdown')) {
require_once('include/bb2diaspora.php');
$body = escape_tags($body);
$body = str_replace("\n",'<br />', $body);
$body = purify_html($body);
$body = preg_replace_callback('/\[share(.*?)\]/ism','share_shield',$body);
$body = diaspora2bb($body,true);
$body = preg_replace_callback('/\[share(.*?)\]/ism','share_unshield',$body);

View file

@ -1 +1 @@
2015-11-10.1212
2015-11-11.1213