PHP :: Bug #27914 :: htmlentities() glitch

Bug #27914

htmlentities() glitch

Submitted:

2004-04-07 18:26 UTC

Modified:

2004-04-08 11:05 UTC

Votes:	1
Avg. Score:	5.0 ± 0.0
Reproduced:	1 of 1 (100.0%)
Same Version:	0 (0.0%)
Same OS:	0 (0.0%)

From:

slunta at msn dot com

Assigned:

Status:

Not a bug

Package:

Unknown/Other Function

PHP Version:

Irrelevant

OS:

Irrelevant

Private report:

CVE-ID:

None

View Developer Edit

Welcome back! If you're the original bug submitter, here's where you can edit the bug or add additional notes.
If you forgot your password, you can retrieve your password here.

Password:

Status:
Package:
Bug Type:
Summary:
From:	slunta at msn dot com
New email:
PHP Version:		OS:

New Comment:

[2004-04-07 18:26 UTC] slunta at msn dot com

Description:
------------
There is an htmlentities glitch. If you have a message in a textarea box, and you use </textarea>, it allows html after that to be parsed on a message preview screen if there is one.

Reproduce code:
---------------
$input=htmlentities($input);

Expected result:
----------------
I can't really give you a code without giving out my entire message screen, let's just say that with this textarea box I'm typing in right now, if I decide to type in </textarea>, and then something like <marquee>glitch</marquee>, the <marquee> would be parsed at the bottom of the screen. My expected result is to not have this happen.

Actual result:
--------------
Of course, the actual result is allowing html after the </textarea> to be parsed. If someone used

</textarea>
<!#cmd.execute="[database query]">

Then it would allow a db query to execute on servers if asp is mixed with php code. This is a dangerous problem, and needs a fix. All I'm saying is that htmlentities() needs to be allowed to block </textarea> for things like message previews.

Patches

Pull Requests

History

AllCommentsChangesGit/SVN commitsRelated reports

[2004-04-08 06:34 UTC] derick@php.net

Not enough information was provided for us to be able
to handle this bug. Please re-read the instructions at
http://bugs.php.net/how-to-report.php

If you can provide more information, feel free to add it
to this bug and change the status back to "Open".

Thank you for your interest in PHP.

[2004-04-08 11:05 UTC] sniper@php.net

And there is no such PHP version as "Irrelevant"..

	php.net \| support \| documentation \| report a bug \| advanced search \| search howto \| statistics \| random bug \| login
go to bug id or search bugs for


Copyright © 2001-2025 The PHP Group All rights reserved.	Last updated: Thu Jul 17 12:01:33 2025 UTC