Title: [Plugin: Simpler CSS] CSS Expressions?
Last modified: August 19, 2016

---

# [Plugin: Simpler CSS] CSS Expressions?

 *  [Dan Collis-Puro](https://wordpress.org/support/users/djcp/)
 * (@djcp)
 * [16 years, 3 months ago](https://wordpress.org/support/topic/plugin-simpler-css-css-expressions/)
 * One can write CSS expressions that invoke javascript and are interpreted in IE.
   This could potentially allow an attacker to do all sorts of nasty things through
   CSS-injected javascript.
 * Does this plugin deal with css expressions?
 * A quick overview:
 * [http://mark-story.com/posts/view/css-expressions-in-ie-and-scoping](http://mark-story.com/posts/view/css-expressions-in-ie-and-scoping)
 * We’re considering using it on [blogs.law.harvard.edu](http://blogs.law.harvard.edu),
   but I wanted to know if you’d looked into this issue. I didn’t see anything specific
   in the simpler_css_filter() function and in my testing css expressions got through
   unscathed.
 * –DJCP
 * [http://wordpress.org/extend/plugins/simpler-css/](http://wordpress.org/extend/plugins/simpler-css/)

Viewing 1 replies (of 1 total)

 *  [Frederick D.](https://wordpress.org/support/users/freddyware/)
 * (@freddyware)
 * [16 years, 2 months ago](https://wordpress.org/support/topic/plugin-simpler-css-css-expressions/#post-1369073)
 * Hi,
 * While it seems possible to do damaging things with CSS expressions, there’s nothing
   in the plugin currently to deal with this.
 * There’s the WordPress.com-released Safe CSS plugin ([http://wordpress.org/extend/plugins/safecss/](http://wordpress.org/extend/plugins/safecss/))
   which uses its regular expressions combined with CSS Tidy to clean up and optimize
   CSS code. I’d recommend using that if you’re serious about duplicating the functionality
   they have on WordPress.com.
 * It’s a little difficult to deal with CSS expressions in regular expressions, 
   but looks like they’ve managed to find a way to clean expressions by leveraging
   CSS Tidy.

Viewing 1 replies (of 1 total)

The topic ‘[Plugin: Simpler CSS] CSS Expressions?’ is closed to new replies.

 * 1 reply
 * 2 participants
 * Last reply from: [Frederick D.](https://wordpress.org/support/users/freddyware/)
 * Last activity: [16 years, 2 months ago](https://wordpress.org/support/topic/plugin-simpler-css-css-expressions/#post-1369073)
 * Status: not resolved

## Topics

### Topics with no replies

### Non-support topics

### Resolved topics

### Unresolved topics

### All topics