Simplify sanitization of accepted HTML attributes

This will avoid converting & to an HTML entity.
2017-08-22 10:02:28 -04:00 · 2017-08-22 10:02:28 -04:00 · c6dbb88dc1
parent 1ac2ec7ad6
commit c6dbb88dc1
1 changed files with 2 additions and 1 deletions
--- a/UI/MailPartViewers/UIxMailPartHTMLViewer.m
+++ b/UI/MailPartViewers/UIxMailPartHTMLViewer.m
@ -686,7 +686,8 @@ static NSData* _sanitizeContent(NSData *theData)
              
              if (!skipAttribute)
                [resultPart appendFormat: @" %@=\"%@\"",
-                            name, [value safeStringByEscapingXMLString: NO]];
+                            name, [value stringByReplacingString: @"\""
+                                                  withString: @""]];
            }
          
          if ([VoidTags containsObject: lowerName])