Milovana.com

Posted: **Wed Mar 03, 2021 1:11 am**

Look at Faux Choices!

https://milovana.com/webteases/showtease.php?id=39570

This is beyond the first few pages so it seems unplayable. Anyone else run into this issue?

Posted: **Wed Mar 03, 2021 2:31 am**

Eos' html sanitizer only allows , , , , , , and tags -- everything else is just encoded and displayed as text.

In some cases, the flash player allowed far more stuff to be injected than the Eos player, but also opened up XSS and privacy issues.

Wouldn't be perfect, but if seraph0x was willing to change Eos's sanitizing filter from:

Code: Select all

whiteList: {
      br: [],
      b: [],
      i: [],
      u: [],
      strong: [],
      em: [],
      p: ['style'],
      span: ['class', 'style']
    },

To something like:

Code: Select all

whiteList: {
      br: [],
      b: [],
      i: [],
      u: [],
      strong: [],
      em: [],
      p: ['style'],
      span: ['class', 'style'],
      textformat: [],
      font: ['color'],
    },

It would probably help teases that are using ancient markup like that render a little bit better.

Milovana.com

Flashtease converted is...weird !

Flashtease converted is...weird !

Re: Flashtease converted is...weird !