• 0 Vote(s) - 0 Average
  • 1
  • 2
  • 3
  • 4
  • 5
CodeIgniter 2.2.1 XSS filter removes tab character '\t' from post variable

#1
I have upgraded my CodeIgniter from 2.1.4 to 2.2.1. In version 2.2.1 I noticed the variables that are sent to controller are being filtered even if I set the XSS filter setting to false.

$config['global_xss_filtering'] = FALSE;
This filtering unfortunately removes the tab character '\t' from the variable. So if I send some string with tab, the tab will get replaced by a space.

Because I'm sending a tabular data (jqgrid) in one string and I'm differentiating each row with a tab (and differentiating each column with a pipe character) now the controller cannot recognize the rows any more (the pipe character was not removed btw)

How to disable this filtering in CodeIgniter? Or maybe to escape the tab from getting removed?
Reply


Digg   Delicious   Reddit   Facebook   Twitter   StumbleUpon  


  Theme © 2014 iAndrew  
Powered By MyBB, © 2002-2020 MyBB Group.