1 files changed, 11 insertions, 2 deletions
diff --git a/inc/3rdparty/libraries/html5/TreeBuilder.php b/inc/3rdparty/libraries/html5/TreeBuilder.php
index 2f5244f9..c4a48b21 100644
--- a/inc/3rdparty/libraries/html5/TreeBuilder.php
+++ b/inc/3rdparty/libraries/html5/TreeBuilder.php
@@ -134,6 +134,7 @@ class HTML5_TreeBuilder {
    // Namespaces for foreign content
    const NS_HTML   = null; // to prevent DOM from requiring NS on everything
+    const NS_XHTML  = 'http://www.w3.org/1999/xhtml';
    const NS_MATHML = 'http://www.w3.org/1998/Math/MathML';
    const NS_SVG    = 'http://www.w3.org/2000/svg';
    const NS_XLINK  = 'http://www.w3.org/1999/xlink';
@@ -3157,11 +3158,19 @@ class HTML5_TreeBuilder {
        }
    private function insertElement($token, $append = true) {
-        $el = $this->dom->createElementNS(self::NS_HTML, $token['name']);
+        //$el = $this->dom->createElementNS(self::NS_HTML, $token['name']);
+        $namespaceURI = strpos($token['name'], ':') ? self::NS_XHTML : self::NS_HTML;
+        $el = $this->dom->createElementNS($namespaceURI, $token['name']);
        if (!empty($token['attr'])) {
            foreach($token['attr'] as $attr) {
-                if(!$el->hasAttribute($attr['name'])) {
+                                // mike@macgirvin.com 2011-11-17, check attribute name for
+                                // validity (ignoring extenders and combiners) as illegal chars in names
+                                // causes everything to abort
+                                $valid = preg_match('/^[a-zA-Z\_\:]([\-a-zA-Z0-9\_\:\.]+$)/',$attr['name']);
+                if($attr['name'] && (!$el->hasAttribute($attr['name'])) && ($valid)) {
                    $el->setAttribute($attr['name'], $attr['value']);
                }
            }

diff --git a/inc/3rdparty/libraries/html5/TreeBuilder.php b/inc/3rdparty/libraries/html5/TreeBuilder.php index 2f5244f9..c4a48b21 100644 --- a/inc/3rdparty/libraries/html5/TreeBuilder.php +++ b/inc/3rdparty/libraries/html5/TreeBuilder.php
@@ -134,6 +134,7 @@ class HTML5_TreeBuilder {
134		134
135	// Namespaces for foreign content	135	// Namespaces for foreign content
136	const NS_HTML = null; // to prevent DOM from requiring NS on everything	136	const NS_HTML = null; // to prevent DOM from requiring NS on everything
		137	const NS_XHTML = 'http://www.w3.org/1999/xhtml';
137	const NS_MATHML = 'http://www.w3.org/1998/Math/MathML';	138	const NS_MATHML = 'http://www.w3.org/1998/Math/MathML';
138	const NS_SVG = 'http://www.w3.org/2000/svg';	139	const NS_SVG = 'http://www.w3.org/2000/svg';
139	const NS_XLINK = 'http://www.w3.org/1999/xlink';	140	const NS_XLINK = 'http://www.w3.org/1999/xlink';
@@ -3157,11 +3158,19 @@ class HTML5_TreeBuilder {
3157	}	3158	}
3158		3159
3159	private function insertElement($token, $append = true) {	3160	private function insertElement($token, $append = true) {
3160	$el = $this->dom->createElementNS(self::NS_HTML, $token['name']);	3161	//$el = $this->dom->createElementNS(self::NS_HTML, $token['name']);
		3162	$namespaceURI = strpos($token['name'], ':') ? self::NS_XHTML : self::NS_HTML;
		3163	$el = $this->dom->createElementNS($namespaceURI, $token['name']);
3161		3164
3162	if (!empty($token['attr'])) {	3165	if (!empty($token['attr'])) {
3163	foreach($token['attr'] as $attr) {	3166	foreach($token['attr'] as $attr) {
3164	if(!$el->hasAttribute($attr['name'])) {	3167
		3168	// mike@macgirvin.com 2011-11-17, check attribute name for
		3169	// validity (ignoring extenders and combiners) as illegal chars in names
		3170	// causes everything to abort
		3171
		3172	$valid = preg_match('/^[a-zA-Z\_\:]([\-a-zA-Z0-9\_\:\.]+$)/',$attr['name']);
		3173	if($attr['name'] && (!$el->hasAttribute($attr['name'])) && ($valid)) {
3165	$el->setAttribute($attr['name'], $attr['value']);	3174	$el->setAttribute($attr['name'], $attr['value']);
3166	}	3175	}
3167	}	3176	}