Bug 6.7.x - Blog Head Includes HTML Validation

1 achillis Oct 14, 2016 11:23

Back-office>Collections>Collection_Name>Settings>Advanced - Scroll to: "Skin and Style"

Custom meta tag/css custom section (before </head>)

If the user inputs a css link:

<link type="text/css" rel="stylesheet" href="/some_dir/some.css" />

is converted to:

<link type="text/css" rel="stylesheet" href="/some_dir/some.css"></link>

and violate HTML standards.

The closing "</link>" gets inserted in weird places, such as after JavaScript which cause further issue.

See: /inc/_core/_param.funcs.php on line 2456 function balance_tags ($text)

//line 2519
// if($tag != 'br' && $tag != 'img' && $tag != 'hr' && $tag != 'param' && $tag != 'input')

 if($tag != 'br' && $tag != 'img' && $tag != 'hr' && $tag != 'param' && $tag != 'input' && $tag != 'link')

2 achillis Oct 14, 2016 11:42

Reproduced: http://demo2.b2evolution.net/stable/admin.php?ctrl=coll_settings&tab=advanced&blog=1

3 mgsolipa Oct 15, 2016 11:31

@achillis thanks for the report and fix suggestion. It's already sent to the developers pipeline, so a fix will be releases shortly.

Regards!

4 achillis Oct 17, 2016 09:54

I see this is fixed in 6.7.8

Thanks

Form is loading...

Bug 6.7.x - Blog Head Includes HTML Validation

1 achillis Oct 14, 2016 11:23

2 achillis Oct 14, 2016 11:42

3 mgsolipa Oct 15, 2016 11:31

4 achillis Oct 17, 2016 09:54

About b2evolution

Downloads

About us

Webhosting Guide

Docs & Support

Other

Stay in touch