githubFork/roundcubemail.git

Roundcubemail devel

parent: 2bbbca39 | patch | commit | ignore whitespace

Don't show fake address - phishing prevention (#1488981)

Aleksander Machniak

2013-03-12 097c544d98bbeee7d120af549116da57ee448ca5

Don't show fake address - phishing prevention (#1488981)

2 files modified

	CHANGELOG	1 ●●●●● patch \| view \| raw \| blame \| history
	program/steps/mail/func.inc	5 ●●●●● patch \| view \| raw \| blame \| history

 CHANGELOG

@@ -1,6 +1,7 @@
CHANGELOG Roundcube Webmail
===========================

- Don't show fake address - phishing prevention (#1488981)
- Fix forward as attachment bug with editormode != 1 (#1488991)
- Fix LIMIT/OFFSET queries handling on MS SQL Server (#1488984)
- Fix javascript errors when working in a page opened with taget="_blank"

 program/steps/mail/func.inc

@@ -1440,6 +1440,11 @@
    $mailto = $part['mailto'];
    $string = $part['string'];

    // phishing email prevention (#1488981), e.g. "valid@email.addr <phishing@email.addr>"
    if ($name && $name != $mailto && strpos($name, '@')) {
      $name = '';
    }

    // IDNA ASCII to Unicode
    if ($name == $mailto)
      $name = rcube_idn_to_utf8($name);

			@@ -1,6 +1,7 @@
			CHANGELOG Roundcube Webmail
			===========================

			- Don't show fake address - phishing prevention (#1488981)
			- Fix forward as attachment bug with editormode != 1 (#1488991)
			- Fix LIMIT/OFFSET queries handling on MS SQL Server (#1488984)
			- Fix javascript errors when working in a page opened with taget="_blank"

			@@ -1440,6 +1440,11 @@
			$mailto = $part['mailto'];
			$string = $part['string'];

			// phishing email prevention (#1488981), e.g. "valid@email.addr <phishing@email.addr>"
			if ($name && $name != $mailto && strpos($name, '@')) {
			$name = '';
			}

			// IDNA ASCII to Unicode
			if ($name == $mailto)
			$name = rcube_idn_to_utf8($name);