Author: gbruin
Description:
Sanitizer will reject attributes found in tags as invalid even though they are technically valid.
Example:
<tag hyphen-name="value"></tag>
When parserHook() is called for <tag>, the $args parameter will be an empty array because 'hyphen-name' is rejected.
To my knowledge, attribute names must start with [a-zA-Z] followed by zero or more from the set [a-zA-Z0-9._-] (is this accurate?). Currently, only attributes of 1 or more [a-zA-Z0-9] are accepted. This is also a minor problem, because attribute names cannot start with a number.
Version: 1.15.x
Severity: enhancement