makary/phpbb
1
0
Fork 0
mirror of https://github.com/phpbb/phpbb.git synced 2025-06-10 21:38:54 +00:00
Code Issues Projects Releases Packages Wiki Activity

[ticket/10240] Added code to strip control characters from messages.

Browse source 
It is possible to evade the word filter using control characters.

Seeing as control characters have no practical application in a bulletin
board software, it doesn't do any harm to remove them entirely. That is
what this commit does.

PHPBB3-10240
This commit is contained in:
Callum Macrae 2011-07-14 18:05:34 +01:00 committed by callumacrae
parent e4707a8be7
commit f9dbe33fa7
1 changed files with 3 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

3
phpBB/includes/functions_content.php
View file

@ -691,6 +691,9 @@ function censor_text($text)
return '';
}
// Strip control characters
$text = preg_replace('/[\x00-\x0f]/', '', $text);
// We moved the word censor checks in here because we call this function quite often - and then only need to do the check once
if (!isset($censors) || !is_array($censors))
{