From 55ed4e14dc20ca52658ccce166c5f3e4f4465926 Mon Sep 17 00:00:00 2001
From: prasad <prasad@vtiger.com>
Date: Thu, 15 Mar 2018 13:16:36 +0530
Subject: [PATCH] Fixes #923: Improved purification api

---
 include/utils/VtlibUtils.php | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/include/utils/VtlibUtils.php b/include/utils/VtlibUtils.php
index c7cb39e88..9860d5618 100644
--- a/include/utils/VtlibUtils.php
+++ b/include/utils/VtlibUtils.php
@@ -718,7 +718,7 @@ function purifyHtmlEventAttributes($value){
 						"onclick|ondblclick|ondrag|ondragend|ondragenter|ondragleave|ondragover|".
 						"ondragstart|ondrop|onmousedown|onmousemove|onmouseout|onmouseover|".
 						"onmouseup|onmousewheel|onscroll|onwheel|oncopy|oncut|onpaste";
-	if(preg_match("/\s(".$htmlEventAttributes.")\s*=/i", $value)) {
+	if(preg_match("/\s*(".$htmlEventAttributes.")\s*=/i", $value)) {
 		$value = str_replace("=", "&equals;", $value);
 	}
 	return $value;
-- 
GitLab