From d0b981757ab416dfd182e6b91e7f9a66132116f9 Mon Sep 17 00:00:00 2001
From: vbenincasa <vbenincasa@gmail.com>
Date: Wed, 09 Jun 2010 15:08:15 -0400
Subject: [PATCH]  - Sanitize CSS universal selector from e-mails. Without this fix any message can play with the CSS from entire mail window or mail preview frame. Test case:  <style type="text/css">*{ background: #000; }</style>

---
 config/mimetypes.php |    3 +++
 1 files changed, 3 insertions(+), 0 deletions(-)

diff --git a/config/mimetypes.php b/config/mimetypes.php
index 7fb4ed2..3e3ed30 100644
--- a/config/mimetypes.php
+++ b/config/mimetypes.php
@@ -40,6 +40,9 @@
   'xlsm' => 'application/vnd.ms-excel.sheet.macroEnabled.12',
   'xlsx' => 'application/vnd.openxmlformats-officedocument.spreadsheetml.sheet',
   'xps' => 'application/vnd.ms-xpsdocument',
+  'rar' => 'application/x-rar-compressed',
+  'vcf' => 'text/vcard',
+  'ics' => 'text/calendar',
 );
 
 ?>
\ No newline at end of file

--
Gitblit v1.9.1