Sanitize output from Helper.urls2links
This commit is contained in:
parent
25a39148a8
commit
5f0011b0f6
|
@ -405,10 +405,12 @@ jQuery.PrivateBin = (function($, RawDeflate) {
|
|||
me.urls2links = function(element)
|
||||
{
|
||||
element.html(
|
||||
DOMPurify.sanitize(
|
||||
element.html().replace(
|
||||
/(((https?|ftp):\/\/[\w?!=&.\/-;#@~%+*-]+(?![\w\s?!&.\/;#~%"=-]>))|((magnet):[\w?=&.\/-;#@~%+*-]+))/ig,
|
||||
'<a href="$1" rel="nofollow">$1</a>'
|
||||
)
|
||||
)
|
||||
);
|
||||
};
|
||||
|
||||
|
|
Loading…
Reference in New Issue