[pLog-svn] XSS remover
Mark Wu
mark.wu at markplace.net
Thu Jan 10 02:51:57 EST 2008
More information here:
http://blog.liip.ch/archive/2005/01/16/xss-how-we-try-to-prevent-it.html
Mark
_____
From: Mark Wu [mailto:mark.wu at markplace.net]
Sent: Thursday, January 10, 2008 3:51 PM
To: 'LifeType Developer List'
Subject: XSS remover
Instead of using the big HTML parser like HTMLPurifier, I think we can use
the samll library like this one:
http://svn.bitflux.ch/repos/public/popoon/trunk/classes/externalinput.php
to remove the XSS attack. It is better then just remove <script>xxx</script>
only ...
So, we have another alternative solution ~
Mark
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://limedaley.com/pipermail/plog-svn/attachments/20080110/c4b17029/attachment.htm
More information about the pLog-svn
mailing list