On Tuesday 26 March 2002 03:56 pm, Shane Hird wrote:
> Is there a way to check the font size of a HTML message?
This rule will find any font tags with a positive size of 3 or more:
rawbody BIG_FONT /<\s*FONT\s[^>]*size\s*=\s*['\"]?\s*\+?(?:[3456789]|\d{2,})/i
describe BIG_FONT A font size
> Although you didn't remove them from the subject line, which has caused a
> problem with the web based e-mail archive on sourceforge. It seems you can
> place any arbitrary html code in the subject line and it doesn't get
> cleaned, yet another cross-site scripting bug. This should be submitted
>
> iframe src=cid:A6ed42Wd7M65W7171 height=0 width=0>
> /iframe>
>
>
> (initial <'s removed just in case someone's email client tries to execute
this)
Although you didn't remove them from the subject line, which has caused a
problem with the web based e-mail archive on sourceforge. It seems
