fix regex misinterpreting tag name in badly formed HTML, prevent rich

content from ever using dangerous tags
1 year ago · 00b47e1673
parent 22c3012e1c
commit 00b47e1673
2 changed files with 4 additions and 2 deletions
--- a/src/components/rich_content/rich_content.jsx
+++ b/src/components/rich_content/rich_content.jsx
@ -149,7 +149,9 @@ export default {
      // Handle tag nodes
      if (Array.isArray(item)) {
        const [opener, children, closer] = item
-        const Tag = getTagName(opener)
+        let Tag = getTagName(opener)
        if (Tag === 'script') Tag = 'js-exploit'
        if (Tag === 'style') Tag = 'css-exploit'
        const fullAttrs = getAttrs(opener, () => true)
        const attrs = getAttrs(opener)
        const previouslyMentions = currentMentions !== null
--- a/src/services/html_converter/utility.service.js
+++ b/src/services/html_converter/utility.service.js
@ -5,7 +5,7 @@
 * @return {String} - tagname, i.e. "div"
 */
 export const getTagName = (tag) => {
-  const result = /(?:<\/(\w+)>|<(\w+)\s?.*?\/?>)/gi.exec(tag)
+  const result = /(?:<\/(\w+)>|<(\w+)\s?.*?\/?>)/gis.exec(tag)
  return result && (result[1] || result[2])
 }