MSO conditional comments #525

stianolsen · 2024-02-01T12:06:40Z

In one of the later releases, there was a change which made some characters like < and >, be encoded if they were found within a HTML comment.
We experience that this breaks MSO conditional comments, which uses HTML comment to "hide" the Outlook specific parts.
For example this:

<h1>Hello</h1><!-- Normal comment --><!--[if mso]> 
<table><tr><td>
       <p>This information will display only in Microsoft Outlook.</p>
   </td></tr></table>
<![endif]-->

becomes the following after being sanitized:

<h1>Hello</h1><!-- Normal comment --><!--[if mso]&gt; 
&lt;table&gt;&lt;tr&gt;&lt;td&gt;
       &lt;p&gt;This information will display only in Microsoft Outlook.&lt;/p&gt;
   &lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;
&lt;![endif]-->

and Outlook does not seem to understand when the HTML within the conditional comment is encoded.
Is there anything that can be done with this?

The text was updated successfully, but these errors were encountered:

mganss · 2024-02-01T16:42:04Z

I've created a property EncodeComment to customize the encoding of comments similar to what has been done for #511. Watch out for possible bypasses if you override the default behavior (see GHSA-43cp-6p3q-2pc4).

mganss · 2024-02-01T16:49:11Z

Releases are 8.0.838 and 8.1.839-beta.

mganss closed this as completed in 9254a13 Feb 1, 2024

mganss added a commit that referenced this issue Feb 1, 2024

Create customizable comment encoding method (fixes #525)

4564c1e

mganss mentioned this issue Mar 18, 2024

Allow outlook conditional comments #537

Closed

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

MSO conditional comments #525

MSO conditional comments #525

stianolsen commented Feb 1, 2024

mganss commented Feb 1, 2024

mganss commented Feb 1, 2024

MSO conditional comments #525

MSO conditional comments #525

Comments

stianolsen commented Feb 1, 2024

mganss commented Feb 1, 2024

mganss commented Feb 1, 2024