bad email sanitisation issue
Bug #266343 reported by
Kangbooboo
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
GNU Mailman |
New
|
Medium
|
Unassigned |
Bug Description
hi, we're using 2.1.5 and when someone added an email
address with quotes (") we got errors a bit everywhere
and mails not getting sent ^^
I looked into changelog up to 2.1.8 which is current
stable and this looks closely to bug #1030228, but
different character.
I would suggest adding the quote character to the
filter (ascii 042)
Or better, rewritte the filter but the reverse way.
only allow [a-zA-Z0-9\-\_\.\+] for email addresses ?
(i made this up from memory but email addresses cannot
contain much more ? maybe im saying something stupid here)
[http://
To post a comment you must log in.
i forgot to say this is done when you're not using the web
interface to input the email+name (else name or mail with
quotes gets rejected as unknown)